Setup XG to AWS VPN with IPSec and BGP?

Question

For UTM, when creating a VPN with AWS, you can download and XML config file and use it to create the VPN definition in UTM, is there a similar feature for XG? I doesn't seem like XG has all of the same functionality to handle the BGP routing? I can't seem to get my Office to AWS IPSec VPN to work based on the instructions in AWS or the instructions in XG (which are extremely sparse).

This thread was automatically locked due to age.

KyleWood · Answer

I'm a consultant and have 3 SG devices in the field with mesh VPN's and AWS tunnels. Went to buy a new one for a new site and got the XG (wasn't quite aware of the stark differences at the time). After much time spent, below is what I received from sophos support regarding what you are asking. (I ended up going back to SG, XG isn't ready for prime time yet) 
 Hello Kyle 
 Currently the XG Firewall is not yet available in the AWS Marketplace but they are already in the planning stage of adding it though I cannot provide any ETA as to when exactly it will be available. 
 Thanks! 
 Regards, 
 Lucky La Torre 
 Sophos Technical Support

xiaoming wang · Answer

Hi All, 
 Have you solved vpn connection problem with AWS, I have resolved it, please find below routing configuraiton. 
 
 Network background: 
 on premise:10.10.0.0/16 
 AWS VPC:192.168.1.0/24 
 
 Policy routing on sophos： 
 VPN incoming： 
 Incoming interface：WAN ip address（WAN port） 
 Source Networks：192.168.1.0/24 
 Destination Network：10.10.0.0/16 
 Service: any 
 Gateway*：10.10.0.1（on premise inside gateway） 
 
 VPN outcoming: 
 Incoming interface：WAN ip address（WAN port） 
 Source Networks：10.10.0.0/16192 
 Destination Network：192.168.1.0/24 
 Service: any 
 Gateway*：10.10.0.1（on premise inside gateway）