This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Dawei_Ye
Collaborator
‎2019-07-31 02:42 AM

Request from AWS NLB didn't enter vpn tunnel

Hi ,

 

We are deploying a Transit VPC architecture right now.

we tried to publish a service via AWS NLB.

NLB would transfer the request to our Gateway ,and we setup a NAT rule to translate the destination to our internal server.

But we found the gateway did translate the packet but didn't transfer to the internal gw(in transit  VPC).

 

we tried to capture packets via tcpdump and fw monitor.

01.png02.png

10.64.6.4 is NLB's addreess.

in tcpdump records,it seems the traffic sent out via physical interface?

in gw logs ,it didn't enter vpn tunnel but did NAT translation.

03.png

 

 

Regards

0 Kudos
Reply
1 Reply
Dawei_Ye
Collaborator
‎2019-07-31 05:24 AM

Additional:
Running R80.20GA in AWS.
0 Kudos
Reply