By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Can't ping the private ip of my ec2 instance

0

I have setup a vpn connection from my SonicWall and setup an inbound ICMP secuirty group rule with echo request to allow ping from the external ip address of my sonicwall. In my sonicwall I can see the pring request going out successfully, but I not getting any response. I am able to ping the public ip address of my instance without any issues. What am I missing?

Topics
Networking & Content Delivery
Tags
Amazon VPCAWS Virtual Private Network (VPN)
Language
English
WKThathos
asked 2 months ago228 views
1 Answer
0

Hello.

If there are no problems with the EC2 security group or subnet network ACL settings, I think there may be a routing problem.
Is there a communication route to the on-premises set in the subnet route table?
If it is set statically, please manually set the communication route in the route table.
https://docs.aws.amazon.com/vpn/latest/s2svpn/VPNRoutingTypes.html

If you are using BGP, try enabling propagated in your route table.
https://docs.aws.amazon.com/vpn/latest/s2svpn/SetUpVPNConnections.html#vpn-configure-route-tables

Will it be successful if I set the IP address restriction for ICMP communication to 0.0.0.0/0 etc. in the EC2 security group?
If it succeeds, there is a problem with the IP address range set in the security group.

profile picture
EXPERT
Riku_Kobayashi
answered 2 months ago
  • WKThathos
    2 months ago

    I do have communication route to the On-Premises set int he subnet route table. Propagation is set for the virtual private gateway under the Route propagation tab.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content