For over a year I have had great success in using site-to-site VPN from my office (SG230) to AWS VPCs (6 of them) using BGP.
I now have brought in a second internet connection to the office and configured it in Active/Active mode on the SG230 for internet access. I now want to use that second internet connection to establish a redundant VPN connection to the AWS VPCs so that if WAN1 goes down the VPN tunnels to AWS will continue to function on WAN2.
I tried establishing 6 new VPN connections on the secondary link and I did not have stable results (connection drops) so I had to back it out. As best I can tell there was some problem with the BGP.
Has anyone successfully configured something like this? For the AWS part of the configuration, should the customer gateway I configure for WAN2 use the same BGP ASN as WAN1?
This thread was automatically locked due to age.
