By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to add custom route via EC2?

0

I need to route certain traffic via site-to-site VPN. This trivial thing doesn't work for me in AWS, while works fine in my test on-prem environment. For instance:

  • I need to route traffic to 111.111.111.111/32 via 10.10.10.11
  • I tried both adding this route to 10.10.10.10, and adding it into the VPC routing table - no results. I.e. I. don't see packets to 111.111.111.111 coming to 10.10.10.11. (I checked both using network sniffer on 10.10.10.11 and using AWS Flow logs).

Any ideas? TIA, Vitaly

Topics
Networking & Content DeliveryCompute
Tags
Amazon VPCAmazon EC2
Language
English
vitaly_il
asked 2 years ago1362 views
2 Answers
1

You should do this by routing to an AWS object that has the IP... i.e. the eni-XXXX that has the 10.10.10.11 IP assigned to it.

AWS route tables need to point objects like ENIs, TGWs, PCXs and not IP addresses.

Isaac Behrens
answered 2 years ago
  • vitaly_il
    2 years ago

    Thank you - I used ENI into VPC routing table. In fact, I found the issue - it was the default "Source/dest. check" == True in the ENI of my VPN box.

1

I found the issue - it was the default "Source/dest. check" == True in the ENI of my VPN box.

vitaly_il
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content