- Newest
- Most votes
- Most comments
This looks like what your trying to achieve. The only way to achieve this is to use BGP for dynamic routing and fail over https://docs.aws.amazon.com/vpn/latest/s2svpn/vpn-redundant-connection.html
Can you swicth to BGP for dynamic routing? But it wouldn't work if you are using separate customer gateways.
"It’s important to note that when you use BGP, both the IPsec and the BGP sessions must be terminated on the same user gateway device, so it must be capable of terminating both IPsec and BGP sessions."
Two recommended reads:
https://docs.aws.amazon.com/vpn/latest/s2svpn/vpn-static-dynamic.html
If you will end with static routes, install more specific static routes to the primary attachment. Then use 10.50.0.0/16 for your secondary. Two specific routes: 10.50.0.0/17 10.50.128.0/17
Relevant content
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- How do I monitor my transit gateway and Site-to-Site VPN on a transit gateway using Network Manager?AWS OFFICIALUpdated 2 years ago