I used 65011 here for the AWS-side ASN but feel free to use something different as long as it is supported aws ec2 create-vpn-gateway -type ipsec.1 -amazon-side-asn 65011 | jq AWS-side configurationĬreating the VGW (Virtual Private Gateway but called vpn-gateway on the CLI). If the Mikrotik is directly attached to the internet please open the firewall ports accordingly for ESP and UDP 500 / 4500. If your setup is the same, please configure port forwarding for ESP, UDP port 500 and UDP port 4500 from the ISP public interface to the Mikrotik router as per the diagram. In this case the Mikrotik is not directly attached to the internet. The values used here are already invalid as the resources have been deleted by the time of writing. Please don’t use the ones in this guide or an IT fairy will jump to her death from a VAX system in some remote DC. can be found in your VPN configuration file (downloaded later). Note: The values for tunnel IP addresses and secrets etc. All commands done over AWS CLI and Mikrotik CLI. Quick (?) steps for connecting a Mikrotik router in an on-premises lab or DC to an AWS VPC using a VPN.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |