cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
376
Views
0
Helpful
0
Replies
Highlighted

IP SLA Blacklisted - FTD

Question

Has anyone found a method to nail up an FTD to AWS VPN tunnel by using only the FTD device?

 

Challenges

  • AWS Site-to-Site VPN doesn't support child tunnels.
  • Idle-timeout is no longer configured, I don't believe, aside from key lifetimes (but not on the FTD).
  • Cisco has blacklisted ip sla monitor as a means to keep the tunnel up bu ICMP echo, the very technique AWS recommends.

What is anyone else using to keep the tunnel(s) nailed up? Thanks!

RFC 1925
0 REPLIES 0
Content for Community-Ad