Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Why Ping works but Reachability Analyzer does not for StrongSwan and VPN, TGW?

0

I follow this aws blog to setup a simulated on-premise with site-to-site VPN and Transit Gateway to connect to AWS. The simulated on-premise uses the strongswan installed in an EC2.

  1. Ping and Reach Analyzer works for path between VPCs in AWS.
  2. Ping works for a path between the simulated on-premise and VPCS in AWS
  3. Reach Analyzer does not work for a path between the simulated on-premise and VPCS in AWS. WHY?
Temas
Redes y entrega de contenido
Etiquetas
Redes y entrega de contenidoAWS Transit Gateway
Idioma
English
hai
preguntada hace 2 años689 visualizaciones
1 Respuesta
1
Respuesta aceptada

When you're running a connectivity test (such as when using ping) you're sending packets through the network path to test it. Reachability Analyzer doesn't do that - instead it looks at the configuration of your VPC and uses automated reasoning to determine what network flows are possible. But the VPC configuration does not contain information abut how (in this case) strongSwan is configured so it cannot perform analysis for that.

profile pictureAWS
EXPERTO
Brettski-AWS
respondido hace 2 años
  • hai
    hace 2 años

    Thank you!

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante