- 最新
- 最多得票
- 最多評論
Hello Rudi,
If you have NAT device in front of the CGW then you must use the Public IP of the NAT device. It is documented here
Internet-routable IP address (static) of the customer gateway device's external interface - The public IP address value must be static. If your customer gateway is behind a network address translation (NAT) device that's enabled for NAT traversal (NAT-T), use the public IP address of your NAT device, and adjust your firewall rules to unblock UDP port 4500.
As for the PSK - are you using auto-generated PSK? you can replace it, instrcutions are here
To change the IKE pre-shared key
You can modify the tunnel options for the Site-to-Site VPN connection and specify a new IKE pre-shared key for each tunnel. For more information, see Modifying Site-to-Site VPN tunnel options
相關內容
- AWS 官方已更新 3 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 7 個月前
- AWS 官方已更新 9 個月前
If you can specify the CGW make and model and exact error seen in the logs that would be helpful