Hi, I have followed the exact same steps, but only change is I am using an AWS EC2 instance as an Customer Gateway device (on-prem device) instead of a raspberry pi, which is on a different VPC than my main VPC, after all steps I can even see "Security Associations (2 up, 0 connecting)" and both tunnels are *up* in AWS site-to-site VPN tunnel details page, but I can't seed any tunnels in "ifconfig" and can't ping my another EC2 instance with is on an private subnet of my main VPC. not sure what's the issue, I and verified and tried this multiple times, but no luck. Can you suggest anything I can make this workout, Thanks.
Hope I understood your question correctly. No extra or special steps are required. Once you establish the site to site VPN connectivity, you can install the onprem server on the raspberry pi. It will work.
@@SrcCodes I am trying to do so but AWS docs show we need a separate hardware layer for cgw and separate hardware for on prem server. I want to run both the things on a single physical device which is a Raspberry Pi 5 8gb.
"internet-routable IP address for the device's external interface" is prerequisite - docs.aws.amazon.com/vpn/latest/s2svpn/SetUpVPNConnections.html#vpn-prerequisites
Really good content!
Thanks for your kind words!
What if there are two customer gateway for fail over purposes. Have you tried?
No I have not tried yet..
Hi, I have followed the exact same steps, but only change is I am using an AWS EC2 instance as an Customer Gateway device (on-prem device) instead of a raspberry pi, which is on a different VPC than my main VPC, after all steps I can even see "Security Associations (2 up, 0 connecting)" and both tunnels are *up* in AWS site-to-site VPN tunnel details page, but I can't seed any tunnels in "ifconfig" and can't ping my another EC2 instance with is on an private subnet of my main VPC.
not sure what's the issue, I and verified and tried this multiple times, but no luck.
Can you suggest anything I can make this workout, Thanks.
Sorry to hear that you are having an issue. Wondering have you checked the security group and network ACL config?
Hey i have a question, Is there any way i can configure my Server and my CGW on the same Raspberry pi?
Yes Kanishk, we can use the same raspberry pi for both cgw and onprem server.
@@SrcCodes I’ll be very grateful if you can please guide me to do so. or make a video on it.
Hope I understood your question correctly. No extra or special steps are required. Once you establish the site to site VPN connectivity, you can install the onprem server on the raspberry pi. It will work.
@@SrcCodes I am trying to do so but AWS docs show we need a separate hardware layer for cgw and separate hardware for on prem server. I want to run both the things on a single physical device which is a Raspberry Pi 5 8gb.
It will work. Please try it once..
What if the customer gateway is not having the Public IP? Have you tried setting up using Certificate based VPN connection?
"internet-routable IP address for the device's external interface" is prerequisite - docs.aws.amazon.com/vpn/latest/s2svpn/SetUpVPNConnections.html#vpn-prerequisites
No, I have not tried.
@@SrcCodes thanks for the response
Np!