Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

AWS Site-to-Site VPN Connectivity Issue with Cisco Router

0

I've set up an AWS Site-to-Site VPN for my on-premise network using a Cisco RV042G router. However, even though the VPN tunnel is up, I can't access the resources on my on-premise network. Oddly, when I disconnect and reconnect the tunnel from the Cisco router or restart the router, it starts working fine. I've checked the 'keep alive' and 'dead peer detection' settings on the Cisco router, but the issue persists. Any suggestions on how to fix this?

Topics
Networking & Content DeliverySecurity, Identity, & Compliance
Tags
Amazon VPCAWS Virtual Private Network (VPN)Network SecurityAWS Network FirewallNetworking & Content Delivery
Language
English
asked 2 years ago947 views
1 Answer
0
Accepted Answer

Hi Ashutosh, the key here is in the fact that connectivity works when you reset the tunnel. Could you please check the negotiated phase 2 traffic selectors to confirm whether they allow connectivity between the VPC and on-prem IP addresses. It could be that the Cisco device is running a policy based VPN and is proposing multiple IPSec SAs (AWS is route based and supports only one IPSec SA at a time).

AWS
EXPERT
answered 2 years ago
AWS
EXPERT
reviewed a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content