By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS Site to Site VPN - Manually Bring down a tunnel

0

Is there a way to bring down a Site to Site VPN tunnel manually? I want to test tunnel2

Thank You

Topics
ComputeNetworking & Content Delivery
Tags
Website ProvisioningAmazon VPCNetworking & Content DeliveryAWS Transit GatewayAWS Virtual Private Network (VPN)
Language
English
rePost-User-9877281
asked 2 years ago5.7K views
2 Answers
1

To manually bring down an AWS Site-to-Site VPN tunnel, you can modify the VPN connection's static routes to force traffic to use the other tunnel. You can do this in the AWS Management Console:

  1. Navigate to VPC > Site-to-Site VPN Connections.
  2. Select your VPN connection.
  3. Go to "Static Routes" tab.
  4. Modify or delete the static route associated with the tunnel you want to bring down.

This will cause traffic to use the other tunnel.

profile picture
EXPERT
Sedat Salman
answered 2 years ago
0

Hi,

If you are wanting to preserve the tunnel configuration, the best course of action would be to disable or change an option for phase1/2 such as your pre-shared-key, IKE version, etc. You can find these options in the public documentation for AWS site-to-site VPN tunnels here

AWS
AWS-User-0357409
answered 2 years ago
profile pictureAWS
EXPERT
Tushar_J
reviewed 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content