AWSGlossary

AWS Storage Gateway: What It Is and When to Use It

Definition

AWS Storage Gateway is a hybrid cloud storage service that connects your on-premises applications and environments with scalable, cost-effective AWS cloud storage. It solves the problem of integrating existing on-premises systems with the cloud by providing standard storage protocols like Network File System (NFS), Server Message Block (SMB), and iSCSI, eliminating the need to rewrite applications.

How It Works

AWS Storage Gateway is deployed as a virtual machine (VM) or a dedicated hardware appliance in your on-premises data center. This gateway appliance acts as a bridge, connecting your local applications to AWS storage services such as Amazon S3, Amazon FSx for Windows File Server, Amazon S3 Glacier, and Amazon EBS.

The core architecture involves a local cache on the gateway appliance for low-latency access to frequently used data. Data written to the gateway is stored locally first and then asynchronously uploaded to AWS, optimizing data transfer through compression and sending only changed data. This provides on-premises performance while leveraging the durability and scalability of the AWS cloud.

There are four main types of gateways to support different use cases:

  • Amazon S3 File Gateway: Presents a file interface (NFS/SMB) and stores files as objects in Amazon S3. This allows you to use S3 for on-premises file workloads, backups, and as a data source for cloud-based analytics and machine learning.
  • Amazon FSx File Gateway: Provides on-premises access to fully managed, cloud-native Amazon FSx for Windows File Server file shares. This is ideal for migrating and consolidating on-premises Windows file storage to the cloud.
  • Volume Gateway: Presents iSCSI block storage volumes to your on-premises applications. Data written to these volumes is asynchronously backed up as point-in-time snapshots (Amazon EBS snapshots) in the cloud. It operates in two modes:
    • Cached Volumes: Stores the primary data in Amazon S3 and caches frequently accessed data locally, minimizing the need for extensive on-premises storage.
    • Stored Volumes: Stores the entire dataset locally for low-latency access and asynchronously backs up this data to Amazon S3.
  • Tape Gateway: Presents a virtual tape library (VTL) interface to your existing backup applications. It replaces physical tapes with virtual tapes stored in Amazon S3, and can archive them to Amazon S3 Glacier and Amazon S3 Glacier Deep Archive for long-term retention.

Key Features and Limits

  • Standard Protocols: Supports NFS, SMB, iSCSI, and iSCSI-VTL, ensuring compatibility with existing applications without modification.
  • Local Caching: Provides low-latency access to frequently used data by caching it on the on-premises gateway appliance.
  • Optimized and Secure Data Transfer: Data transfer between the gateway and AWS is optimized and secured with SSL encryption.
  • High Availability: Can be configured for high availability on VMware vSphere to automatically recover from most service interruptions in under 60 seconds.
  • Integration with AWS Services: Natively integrates with other AWS services like Amazon S3, Amazon EBS, AWS Backup, AWS Key Management Service (KMS), Amazon CloudWatch, and AWS IAM.
  • Service Quotas (as of 2026):
    • Volume Gateway: Up to 32 volumes per gateway. In cached mode, each volume can be up to 32 TiB. In stored mode, each volume can be up to 16 TiB.
    • Tape Gateway: Minimum cache storage of 150 GiB and maximum of 64 TiB.
    • S3 File Gateway: Local cache can support up to 64 TB of data.

Common Use Cases

  • Hybrid Cloud File Shares: Extend on-premises file servers with virtually unlimited cloud storage using S3 File Gateway or FSx File Gateway, without changing user and application workflows.
  • Backup and Recovery: Replace physical tape libraries with a Tape Gateway for a durable and cost-effective cloud-based backup and archive solution. Use Volume Gateway to take point-in-time snapshots of on-premises application data for disaster recovery in the cloud.
  • Data Migration and Tiering: Seamlessly migrate on-premises data to the AWS cloud. Use S3 File Gateway with S3 Lifecycle policies to automatically tier older, less frequently accessed data to more cost-effective storage classes like Amazon S3 Glacier.
  • Cloud Workload Data Ingestion: Provide on-premises applications with low-latency access to data that is being processed by cloud services like big data analytics or machine learning.

Pricing Model

AWS Storage Gateway has a pay-as-you-go pricing model with several components:

  • Storage: You pay for the amount of data stored in AWS. For File Gateway, this is based on Amazon S3 pricing. For Volume Gateway, you pay for the volume storage and EBS snapshot storage. For Tape Gateway, you are charged for virtual tape storage in Amazon S3 and archival in Amazon S3 Glacier.
  • Data Transfer: You are charged for data transferred out from AWS to your on-premises gateway. Data transfer into AWS is generally free.
  • Requests: There may be charges for requests made to the storage services, such as PUT, GET, and LIST operations on Amazon S3.

A free tier is available for the first 100 GB of data written to AWS per account. For detailed and up-to-date pricing information, it is recommended to use the AWS Pricing Calculator.

Pros and Cons

Pros

  • Seamless Integration: Provides standard storage protocols, allowing for easy integration with existing on-premises applications and infrastructure.
  • Low-Latency Performance: The local cache provides on-premises applications with fast access to frequently used data.
  • Scalability and Durability: Leverages the virtually unlimited scalability and high durability of AWS cloud storage services like Amazon S3.
  • Cost Savings: Can reduce on-premises storage costs by shifting capital expenditures on hardware to operational expenses for cloud storage.
  • Centralized Management: Integrates with AWS services for monitoring, security, and management.

Cons

  • Initial Setup Complexity: The initial setup and configuration can be complex for users new to the service.
  • Bandwidth Dependency: Performance is dependent on the network bandwidth between the on-premises environment and AWS.
  • Single Point of Failure: The on-premises gateway can be a single point of failure, though high availability options are available for VMware environments.
  • Pricing Nuances: The pricing model has multiple components, which can sometimes make cost estimation challenging.

Comparison with Alternatives

  • AWS Direct Connect: While Storage Gateway provides a hybrid storage solution over the internet, AWS Direct Connect provides a dedicated private network connection between your on-premises data center and AWS. They are often used together to provide a more reliable and consistent network experience for Storage Gateway.
  • AWS Snowball: Snowball is a service for physically migrating large amounts of data into and out of AWS. It is ideal for one-time or infrequent large-scale data transfers, whereas Storage Gateway is designed for ongoing, operational use cases that require a persistent connection between on-premises and cloud storage.
  • Amazon FSx for Windows File Server: This is a fully managed native Windows file system in the cloud. While FSx File Gateway provides on-premises access to it, you can also access it directly from your on-premises environment over a VPN or Direct Connect. The choice depends on the desired level of on-premises caching and management.

Exam Relevance

AWS Storage Gateway is a common topic on several AWS certification exams, particularly those focused on solutions architecture and storage.

  • AWS Certified Solutions Architect - Associate (SAA-C03): Candidates are expected to understand the different gateway types and their use cases, especially for hybrid cloud architectures, backup, and disaster recovery scenarios.
  • AWS Certified Solutions Architect - Professional (SAP-C02): This exam requires a deeper understanding of designing and implementing hybrid storage solutions, including performance optimization, security, and high availability for Storage Gateway.
  • AWS Certified Storage - Specialty (SCS-C02): This exam covers Storage Gateway in-depth, including its architecture, deployment, management, and troubleshooting.

Examinees should be familiar with when to use each gateway type (File, Volume, Tape) and how they integrate with other AWS services.

Frequently Asked Questions

Q: Can I access my S3 File Gateway data directly from Amazon S3?

A: Yes, files written to your S3 File Gateway are stored as objects in your Amazon S3 bucket. There is a one-to-one mapping between files and objects, allowing you to access the data directly in S3 for use with other AWS services.

Q: What happens if my on-premises gateway loses connectivity to AWS?

A: Your on-premises applications can continue to access the data that is cached locally on the gateway. However, read and write operations for data not in the cache will fail. The gateway will automatically resume uploading data to AWS once connectivity is restored.

Q: How does Volume Gateway handle disaster recovery?

A: Volume Gateway allows you to take point-in-time snapshots of your on-premises volumes, which are stored as Amazon EBS snapshots in the cloud. In a disaster recovery scenario, you can restore these snapshots to an Amazon EBS volume and attach it to an Amazon EC2 instance to quickly resume your applications in the cloud.

This article reflects AWS features and pricing as of 2026. AWS services evolve rapidly — always verify against the official AWS documentation before making production decisions.

Published: 4/28/2026 / Updated: 4/29/2026

This article is for informational purposes only. AWS services, pricing, and features change frequently — always verify details against the official AWS documentation before making production decisions.

More in Storage

S3 Select: Query Data in S3 Objects with SQL

Amazon S3 Select lets you retrieve data subsets from S3 objects using SQL. Improve performance and cut costs by querying data directly. Learn when to use it.

S3 Access Points: Simplify Data Access at Scale

Amazon S3 Access Points offer unique network endpoints with dedicated policies to manage data access for shared datasets. Learn how they simplify complex bucket policies. See use cases.

AWS DataSync: Accelerate Data Transfer to AWS

AWS DataSync is a secure, online data transfer service that simplifies and automates moving large amounts of data to AWS Storage. Learn how it works and when to use it.

AWS Snowmobile: Exabyte-Scale Data Transfer Explained

AWS Snowmobile was an exabyte-scale data transfer service for moving massive data. Learn its historical use cases and alternatives.

AWS Snowball: Transfer Petabytes Safely

AWS Snowball transfers petabyte-scale data into/out of AWS Cloud securely, bypassing the internet. Learn how it works and when to use it.

View all Storageterms →