...
2- Associate a Security Group with VPC
3- create a Customer gateway or
...
cGW ( point to remote SRX )
- Static: Name, Public IP@ of SRX/DC GW
- Dynamic: using BGP: Name, Public IP@ of SRX/DC GW, AS# ( eBGP session ? )
3- Create a Virtual Private Gateway or
...
vGW ( point to internal AWS infrastructure )
- Attach to VPC
...
4- Create a VPN Connection
- Name,
- VPGw,
- CGw,
- Static one side: attach to vGW ( point to internal AWS infrastructure )
- other side: attach to cGw ( point to remote SRX )
- Static route or the remote DC ( Private IP@ of DC ) or Dynamic ( BGP will exchange DC IP@ )
...