Tuesday, September 28, 2021

Versa SD-WAN to AWS

We have a co-managed Versa SD-WAN appliance and we have two BGP tunnels set up to AWS. The tunnels are up and connectivity is across the tunnels. Can ping and transfer data/RDP sessions. From time to time the tunnel will drop a few packets, before starting to communicate again. I have worked several times with the ISP and been escalated/what have you and issue is still occurring. I have matched the exact setting from the AWS documentation. The Versa appliance we have seen issues with a Meraki site to site VPN, which may have been isolated to Merakis not playing well in a multi-vendor environment. We keep seeing no proposal chosen, on both sides. Although the settings match as best as I can tell, and as well as the ISP Tech. The IPSec in the Versa appliance is set to 1 hour, and the IKEv1 or 2 is set to 8 hours. AWS Technician stated that there is a misconfiguration on the Versa appliance, I'm not an expert on the Versa side. I have the ISP technician reviewing on their side, possibly opening a ticket with Versa.

I know it sounds simple, but the error we are seeing is no proposal chosen, and when 3 or more packets are dropped it causes issues with the application. Any suggestions or has anyone ran into similar issue? Any help is greatly appreciated.



No comments:

Post a Comment