Is there a way to disable a VPN connection instead of deleting it?

Question

So im configurating a Site-to-Site VPN, to use it only as a Backup VPN. 
Thas is because i have an EC2 Instance serving as a Backup Server...
My idea is to have the instance Stopped until i really need it.
That instance is accesible by a VPN.

Is there a way to mantain de VPN configurated but in "stand-by" or "disable" status?

Im going to use it in case my production Server or VPN fail.

By consequence, the client just have to point to my Backup VPN.
I dont want to create a new VPN in that moment, i just want to have it there...

Im being clear?

Best regards!
Eze.

Accepted Answer

There is no way to disable the VPN so it can be enabled later on, instead you can disable the tunnels on the on-prem side so the on-prem side can forward traffic over the primary, and enable the tunnels later when needed, but you'll still be charged for the VPN connection which is about $36 per month.

Or you can have both VPNs (primary and backup) configured and both are active, and through BGP attributes you can have one act as a primary and one as secondary, for that you would need to use dynamic VPN instead of static.

Answer

As per the other answer, you can't put a VPN connection into a disabled state.

Something I created a few years ago was a Lambda function that would create a VPN connection when specific conditions were met - for example, when a network link goes down. It might be useful here: https://github.com/Brettles/NetworkBreakGlass

Is there a way to disable a VPN connection instead of deleting it?

Relevant content