Unable to access any resources over site to site VPN

Question

Hi there,

I am quite new to Site to site VPN so bear with me
I am wanting to connect our on prem router to an AWS instance

I have created the instance ok and I have created the VPC, subnet, route tables, customer gateway and site to site VPN
However I cant ping or browse to the on prem router
Am I missing something simple?
I have checked and the on prem IP range is added to the routing table

The S2S vpn coonnection is up on both the router and on the VPN settings

Answer

Hi,

I'd strongly recommend to use Reachability Analyzer to diagnose this issue: https://docs.aws.amazon.com/vpc/latest/reachability/what-is-reachability-analyzer.html

See also this blog post: https://aws.amazon.com/blogs/aws/new-vpc-insights-analyzes-reachability-and-visibility-in-vpcs/

It will provide you with a comprehensive report helping you in finding the cause of your problem.

Best,

Didier

Answer

Hello.

Is it possible to use the tracert command to check if communication is reaching the on-premises network?  
Also, can I get a packet capture on the on-premises side and check if there is a connection from the VPC?  
Also, check if a route to the VPC is set on the on-premises router.

Unable to access any resources over site to site VPN

관련 콘텐츠