01-21-2020 08:57 AM
I am using a CSR in an AWS VPC for IPsec/IKEv2 termination to remote branches. I'm using dynamtic VTIs/Virtual templates to implement the tunnels. The remote ends of the tunnels are ASAs that use policy-based IPsec tunnels. Given this set-up, my understanding is that the SA will not be active unless there is interesting traffic. I do not manage the ASAs and have limited ability to influence their configuration.
I want to publish SNS notifications when an individual IPsec tunnel is unable to establish. What is the recommended way to accomplish this?
01-21-2020 09:11 AM
01-21-2020 10:19 AM
The FAQ covers AWS VPN and AWS Client VPN. I am not using either of AWS's managed VPN services.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: