En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

AWS Site-to-Site VPN Connectivity Issue with Cisco Router

0

I've set up an AWS Site-to-Site VPN for my on-premise network using a Cisco RV042G router. However, even though the VPN tunnel is up, I can't access the resources on my on-premise network. Oddly, when I disconnect and reconnect the tunnel from the Cisco router or restart the router, it starts working fine. I've checked the 'keep alive' and 'dead peer detection' settings on the Cisco router, but the issue persists. Any suggestions on how to fix this?

Sujets
Réseaux et diffusion de contenuSécurité, identité et conformité
Balises
Amazon VPCPare-feu réseau AWSRéseaux et diffusion de contenuSécurité du réseauAWS Virtual Private Network (VPN)
Langue
English
Ashutosh Pandey
demandé il y a 3 mois413 vues
1 réponse
0

Hi Ashutosh, the key here is in the fact that connectivity works when you reset the tunnel. Could you please check the negotiated phase 2 traffic selectors to confirm whether they allow connectivity between the VPC and on-prem IP addresses. It could be that the Cisco device is running a policy based VPN and is proposing multiple IPSec SAs (AWS is route based and supports only one IPSec SA at a time).

profile pictureAWS
EXPERT
George Murimi
répondu il y a 3 mois

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents