VPN Tunnel to Amazon Web Services (AWS) is unstable
||IPSec VPN, Security Gateway, vSEC for AWS
||R77.10, R77, R77.20, R77.30
- Traffic randomly fails to reach the AWS peer network. SmartView Tracker logs show that the Check Point Security Gateway successfully encrypts the traffic.
- 'vpn tu' is showing many stored IKE Phase 2 keys for the AWS peer gateway.
- Resetting the VPN tunnel with the AWS peer resolves the issue temporarily.
- the VPN to AWS(Amazon) is configured as Domain Based VPN with Encryption domains
Amazon Web Services only supports 2 SPI per tunnel.
Note: To view this solution you need to