A company has set up connectivity between its on-premises data center in Paris, France, and the AWS Cloud using an AWS Direct Connect connection with a transit VIF linked to a transit gateway in the Europe (Paris) Region. The company operates workloads in private subnets across multiple VPCs attached to the transit gateway.

Following the acquisition of another corporation with on-premises workloads in Tokyo, Japan, the company needs to migrate these workloads to AWS within 5 days. The migrated workloads must access existing workloads in Paris, and connectivity must be established between the Tokyo office and the Paris data center.

In the Asia Pacific (Tokyo) Region, the company has created a new VPC with private subnets for the migration. The workloads must not be directly accessible from the internet.

What steps should a network engineer follow to fulfill these requirements?