Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Sander_Zumbrink
Contributor

Unstable VPN with AWS

Hello,

We are busy with setting up VPN's between AWS and Check Point onpremise ClusterXL setup.

We are using BGP for dynamic routing between both environments.

We followed the instructions from AWS and Check Point SK exactly.

The setup works, traffic is going from AWS to the customer and back.

But...

The VPN tunnel is really unstable. We see a lot of disconnects with BGP.

Almost all the issues are related to the key install with phase 1 and next the phase 2.

It looks like AWS is sending me deletes for the keys.

The Check Point is starting new main mode for phase 1.

And packets arive from AWS with invalid SA.

I already have a ticket with Check Point support, but no solution yet.

So I'm asking here if there are other experts had these issues.

And how to solve it...

0 Kudos
3 Replies
G_W_Albrecht
Legend
Legend

No, but a fix should be available for the issue explained here that sounds very similar: sk112141: Site-to-Site VPN fails between Check Point Security Gateway and Check Point Virtual Applia...

0 Kudos
Sander_Zumbrink
Contributor

Hello Gunther,

Thanks for your response.
But the gateway on AWS is a AWS gateway and not a Check Point Virtual Appliance.

So the Hotfix can't be installed and I think the issue is not the same.

Sander

0 Kudos
ikokonkwo99
Explorer

Hi Sander_Zumbrink, I would like to know how this was resolved eventually. Having a similar issue at the momebt

0 Kudos