AWS direct connect: Route from VPC Lambda to on-prem server

Using AWS Direct Connect, is it possible to:

1. Make requests FROM AWS (lets say EC2) into my on-premise datacenter? Docs I've read only seem to explicitly state Direct Connect allows you to establish connections FROM your datacenter TO AWS (not the other way around).
2. If answer to question 1 is yes, is it possible to make connection FROM lambda running in VPC TO my datacenter? I want to execute puppeteer inside lambda against a web application running on a server in the datacenter.

I know just enough about networking to be dangerous, but by no means an expert. Answering in a way that a non-network admin can understand would be appreciated.

The short answer: yes and yes

I'm assuming that you won't be setting it up yourself, that should be done by a network admin. Assuming they have set up the interfaces, router configuration, firewalls, NACLS, routing tables, etc.

You only need to do the following for a specific usecase within your AWS Account:

• Make the Lambda Function VPC Connected
• Add a Security Group that allows access to the CIDR of your Web Service

You can then talk to the on premise servers as if on your own network.