Delete Unassociated AWS VPN gateway – Optimize your VPC cost

AWS VPC - Unassociated VPN Gateway

Cost optimization refers to saving of cost to bring down the cloud expenditure. Any organization-whether big or small looks to cut down their cloud expenses. Managing unused resources is considered one of the best practices to cut down your unnecessary costs and reduces your cloud expenditure thus ensuring cost optimization.

What is Amazon VPC? How can you optimize your VPC cost 

VPC (Virtual Private Cloud) is a cloud computing service provided by Amazon Web Services (AWS) that allows users to launch their resources such as EC2, RDS instances in a logically isolated section of the cloud called a virtual private cloud. This virtual private cloud or VPC closely resembles a traditional network that users can operate in their own data center. VPC provides users with the benefit of scaling their AWS infrastructure by attaching multiple instances of numerous services with their VPC. Resources present in your VPC cannot communicate with a remote network of the user. To make them communicate, a VPN gateway is used.

A VPN gateway is one of the most important components of a VPC connection. It is the concentrator on the Amazon side of the VPN connection. Virtual gateways can be attached to VPC from which VPN connections can be made which allows resources to communicate in the remote network. Sometimes there can be some VPN gateways which are not attached to any resource on AWS. Such unassociated VPN gateways can increase your cloud expenditure unnecessarily and hence it becomes important to take suitable action against the same.

Centilytics comes into the picture

Centilytics recommends certain practices related to your VPC resources which helps you in controlling your cloud spending. Centilytics provides an insight which checks for all unassociated VPN gateways that are not attached to an active VPN resource. If such VPN gateways exist, then it can incur an extra cost which will increase your cloud expenditure. Using this insight, users can be aware of all unassociated VPN gateways which are costing them extra bucks and can take suitable action against them from the AWS console.

Insight descriptions

There can be 1 possible scenario:

Severity Description
WARNING This indication will be displayed when there exists a VPN gateway which is not associated with any active VPC resource

 

Description of further columns are as follows:

  1. Account Id: This column shows the respective account ID of the user’s account.AWS VPC unassociated VPN gateway-s1
  2. Account Name: This column shows the corresponding account name to the user’s account.AWS VPC unassociated VPN gateway-s2
  3. Region: This column shows the region in which the corresponding resource exists.AWS VPC unassociated VPN gateway-s4
  4. Identifier: This column shows the unique identifier, or the gateway ID used to identify and differentiate between multiple VPN gateways.AWS VPC unassociated VPN gateway-s3
  5. State: This column shows the status of your VPN gateways. ‘Active’ is displayed when VPN gateway is in use.AWS VPC unassociated VPN gateway-s5
  6. Type: This column shows the type corresponding VPN gateway.AWS VPC unassociated VPN gateway-s6
  7. Potential Monthly Savings: his column shows how much money can be saved ( in dollar currency) if the corresponding unassociated VPN gateway is deleted. AWS VPC unassociated VPN gateway-s7

    Filters applicable:

    Filter Name Description
    Account Id Applying Account Id filter will display data for the selected account Id.
    Region Applying region filter will display data according to the selected region.
    Severity Applying severity filter will display data according to the selected severity type i.e. selecting critical will display all resources with critical severity. Same will be the case for warning and ok severity types
    Resource Tags Applying resource tags filter will display those resources which have been assigned the selected resource tag. For eg- If the user has tagged some resource by a tag named environment, then selecting an environment from the resource tags filter will display all
    Resource Tags Value Applying resource tags value filter will display data which will have the selected resource tag value. For eg: If the user has tagged some resource by a tag named environment and has given it a value say production (environment:production), then the user will be able to view data of all the resources which are tagged as “environment:production”. You can use the tag value filter only when a tag name has been provided.

     

    Read More

    [1] https://docs.aws.amazon.com/vpc/latest/userguide/VPC_VPN.html