Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Why Ping works but Reachability Analyzer does not for StrongSwan and VPN, TGW?

0

I follow this aws blog to setup a simulated on-premise with site-to-site VPN and Transit Gateway to connect to AWS. The simulated on-premise uses the strongswan installed in an EC2.

  1. Ping and Reach Analyzer works for path between VPCs in AWS.
  2. Ping works for a path between the simulated on-premise and VPCS in AWS
  3. Reach Analyzer does not work for a path between the simulated on-premise and VPCS in AWS. WHY?
Themen
Vernetzung & Bereitstellung von Inhalten
Tags
Vernetzung & Bereitstellung von InhaltenAWS Transit Gateway
Sprache
English
hai
gefragt vor 2 Jahren689 Aufrufe
1 Antwort
1
Akzeptierte Antwort

When you're running a connectivity test (such as when using ping) you're sending packets through the network path to test it. Reachability Analyzer doesn't do that - instead it looks at the configuration of your VPC and uses automated reasoning to determine what network flows are possible. But the VPC configuration does not contain information abut how (in this case) strongSwan is configured so it cannot perform analysis for that.

profile pictureAWS
EXPERTE
Brettski-AWS
beantwortet vor 2 Jahren
  • hai
    vor 2 Jahren

    Thank you!

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt