A vendor to us provides a server on amazon cloud. At the moment each client device connects through the cloud IP directly. We consider this a security risk. Since we already have Peplink Balance routers at all locations we want to setup a SpeedFusion VPN to the amazon cloud, and block cloud access outside of that VPN. That means only devices on our LAN with rule based access can get into the cloud server. We will only use this link for access to that specific cloud server, not a general VPN for all traffic. Bandwidth is not an issue. We have multiple WAN locally so the link would want to be blended on our end. Not sure if we would have a single or blended amazon connection.
The company who operates that amazon cloud server is not experienced with Peplink. I will hold their hand ehtorugh the setup. There are a lot of simiar names for Peplink VPN and cloud connections. What specific name does our vendor need to ask amazon for? I assume the amazon setup interface would be very similar to what I see now in the Balance interface?
We are already paying for the amazon services for client direct remote connection. When we go to the VPN connection the bandwidth will only change by the small amount for the bandwidth overhead. Can someone give me a rough idea how much (if anything) amazon charges to add the Peplink VPN connection on their end?
I haven’t installed FusionHub in amazon for a long time, but I used to use this guide: https://download.peplink.com/manual/peplink_fusionhub_and_aws_cloud_wan.pdf
5gstore have a video guide here https://www.youtube.com/watch?v=J8wgrTONXC0
The video is helpful and looks like what we would need. The PDF download document illustrates a far more complex install.
What is the cost for FusionHub? We have 6 Balance and 2 mobile peplink routers that will need to connect. Do I need a single license or do I need 8 of them?
I have not been using InControl. I haven’t see the benefit to manage that many devices. We have about 30 wifi access points but we can manage them through the Balance. From the video it appears that InControl is necessary to set up FusionHub. Does that mean I have to put al those devices on an InControl subscription? Or can I use InControl just for the AWS side, and continue to manage the devices directly as I do now?
FusionHub solo is free for a single remote peer device to connect to. Additionally, if you only connect primecare devices to it (primecare devices come with a speedfusion license) then you can connect as many primecare devices as you like to the Fusionhub solo. Then year 2 there is a IC2 subscription cost for the FusionHub Solo if you want to continue to manage that via IC2 - but its cheap <$100 I think.
Primecare devices need to maintain their primecare subscription to be able to use their own speedfusion license to connect to a FusionHub solo.
Or you can buy FusionHub sized with a set licensed remote peer count. See the list here Peplink Online Shop
Or you can speak with a Peplink SpeedFusion Alliance Partner who buys thousands of peer licenses and can supply a licensed FusionHub to you (that they typically host - they manage the SFA licenses in their IC2 organisation so the FusionHub has to be managed from there).
Fusionhub has to be licensed via IC2 and is easy to manage from there too. Technically you only need IC2 for licensing and license management for the Fusionhub. You can manage it directly / manually via its public / LAN IPs.
Remote peers that connect to your licensed Fusionhub do not need to be in warranty or have active subscriptions (unless you want to use bonding on Primecare which does need an actve primecare subscription for advanced speedfusion features).