vSRX
Highlighted
vSRX

Spoke VPC fails to connect to transit VPC

‎04-27-2018 12:39 PM

Using the instructions provided in the "vSRX Virtual Firewall-Based AWS Transit VPC" guide, I've created an AWS transit vpc in US-West/NoCal using the CloudFormation template, transit-vpc-primary-account.template, which I downloaded from the Juniper vSRX-AWS site at github. Both vSRX instance are up and running each in a different AZ.  When I created the spoke VPC in US-West/Oregon and added the spoke tag "transitvpc:spoke"/ value <my value>, I expected to see the two CGW's and VPN's created in the transit VPC as described in Step 9 of the "Create Artifacts Inside Spoke VPC" section of the guide.  Unfortunately, none of these were created and I'm unsure where to look to find any error messages or other logging data which could indicate why the VPN establishment process failed.  Does anyone have any insight that might help me troubleshoot this?

 

Thanks,

George

1 REPLY 1
vSRX

Re: Spoke VPC fails to connect to transit VPC

Wednesday

I am having the exact same issue, did you get it to work George?

 

I'm enabling CloudWatch Logs (aws log collector) to check for errors, but it seems the script is not creating the VPN on AWS side or inside the vSRX.

 

Thanks,