Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 4374 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

vpn from Amazon

alex81
Hi All,

Current situation -

There is a VPN tunnel from Amazon Web Services (AWS) to one of our data centers. From the Amazon Console, it shows that the VPN tunnel is up and from the astaro FW, it's also showing that the VPN tunnel is also up.

There are two network definitions - AWS 1 [10.129.12.x] & AWS 2 [10.129.13.x]

There is a firewall rule that allows traffic from [AWS 1 & AWS 2] to the domain controller located in the datacenter. 

But when I tried to do a dcpromo to join the domain to the DC in Datacenter, it failed with the error - An active directory domain controller for the domain ABC.LCOAL could not be tacted.

Ensure that the DNS domain name is typed correctly. I have changed the DNS  of the machine to point to the DNS of the domain controller that is located in the data center but to no avail.

Can any guru please advise?

Your reply is very much appreciated!

cheers,
Alex


This thread was automatically locked due to age.
Parents
  • 0
    I hope Bruce comes back to comment.  I haven't set up a VPC connection, but he has.  I thought the VPC configuration process with the UTM included the UTM informing the VPC about the  subnets on the UTM's interfaces.

    If my understanding had been correct, and if your DC were behind another router, the Amazon side still wouldn't have known about the "hidden" subnet:

    Amazon[UTM][Router]DC



    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    I hope Bruce comes back to comment.  I haven't set up a VPC connection, but he has.  I thought the VPC configuration process with the UTM included the UTM informing the VPC about the  subnets on the UTM's interfaces.

    If my understanding had been correct, and if your DC were behind another router, the Amazon side still wouldn't have known about the "hidden" subnet:

    Amazon[UTM][Router]DC



    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML