Create a Post
Showing results for 
Search instead for 
Did you mean: 

Unstable VPN with AWS


We are busy with setting up VPN's between AWS and Check Point onpremise ClusterXL setup.

We are using BGP for dynamic routing between both environments.

We followed the instructions from AWS and Check Point SK exactly.

The setup works, traffic is going from AWS to the customer and back.


The VPN tunnel is really unstable. We see a lot of disconnects with BGP.

Almost all the issues are related to the key install with phase 1 and next the phase 2.

It looks like AWS is sending me deletes for the keys.

The Check Point is starting new main mode for phase 1.

And packets arive from AWS with invalid SA.

I already have a ticket with Check Point support, but no solution yet.

So I'm asking here if there are other experts had these issues.

And how to solve it...

0 Kudos
3 Replies

No, but a fix should be available for the issue explained here that sounds very similar: sk112141: Site-to-Site VPN fails between Check Point Security Gateway and Check Point Virtual Applia...

CCSE / CCTE / CCME / CCSM Elite / SMB Specialist
0 Kudos

Hello Gunther,

Thanks for your response.
But the gateway on AWS is a AWS gateway and not a Check Point Virtual Appliance.

So the Hotfix can't be installed and I think the issue is not the same.


0 Kudos

Hi Sander_Zumbrink, I would like to know how this was resolved eventually. Having a similar issue at the momebt

0 Kudos


Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events