Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post

AWS S2S VPN - Route Based Network CIDR Blocks

0

We are setting up a S2S VPN between AWS and Cisco FTD that will be VTI based. What should the Remote and Local IPv4 network CIDR's be set to? Is it recommended that they be set to 0.0.0.0/0 in order to enable/ensure the BPG peering works?

Tópicos
Rede e entrega de conteúdo
Tags
Amazon VPC
Idioma
English
yellowyak
feita há 2 meses296 visualizações
1 Resposta
0

Hello.

Remote and Local IPv4 network CIDR's

What you want to know is the CIDR set on the screen below in the AWS management console?
a

If so, please set the on-premises CIDR for "Local IPv4 network CIDR".
There is no problem if you set the AWS VPC CIDR for "Remote IPv4 network CIDR".
This is a CIDR setting that allows the VPN tunnel to pass through, so if you set it to 0.0.0.0/0, all communications will be able to pass through.
If there is no need to limit it, I think you can set it to 0.0.0.0/0.

profile picture
ESPECIALISTA
Riku_Kobayashi
respondido há 2 meses
  • yellowyak
    há 2 meses

    Are there security risks to setting it to 0.0.0.0/0? Because when we set the Local and Remote IPv4 network CIDRs to our correct CIDRs, the tunnels didn't work (because I think the BGP peering traffic wasn't captured)

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas

Conteúdo relevante