-
Notifications
You must be signed in to change notification settings - Fork 1
/
VPN-BGP-TEMP
93 lines (68 loc) · 6.77 KB
/
VPN-BGP-TEMP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
To save time later in the DEMO, you should populate this before configuring the ONPREM environment.
There are two VPN connections ... one between AWS and ONPREM ROUTER1 and one between AWS and ONPREM ROUTER2
For each of those there are two tunnels ... AWS Endpoint A -> ONPREMROUTER
and AWS endpointB -> ONPREMROUTER
Those are the details we will populate
# SHARED VALUES
ROUTER1_PRIVATE_IP = 192.168.12.64
ROUTER2_PRIVATE_IP = 192.168.12.222
ONPREM BGP ASN = 65016
AWS BGP ASN = 64512
# CONNECTION1 - AWS => ON PREM ROUTER1
CONN1_TUNNEL1_PresharedKey = _U.OOLQjpN6ti9uJ0ZM8rVcrTAw6rJYB
CONN1_TUNNEL1_ONPREM_OUTSIDE_IP = 44.209.199.51
CONN1_TUNNEL1_AWS_OUTSIDE_IP = 75.2.40.238
CONN1_TUNNEL1_ONPREM_INSIDE_IP = 169.254.123.14/30
CONN1_TUNNEL1_AWS_INSIDE_IP = 169.254.123.13/30
CONN1_TUNNEL1_AWS_BGP_IP(Neighbor IP)= 169.254.123.13
CONN1_TUNNEL2_PresharedKey = MDShhWjCTBecq9.UG2m5gj6S7CfQJa92
CONN1_TUNNEL2_ONPREM_OUTSIDE_IP = 44.209.199.51
CONN1_TUNNEL2_AWS_OUTSIDE_IP = 99.83.240.177
CONN1_TUNNEL2_ONPREM_INSIDE_IP = 169.254.19.102/30
CONN1_TUNNEL2_AWS_INSIDE_IP = 169.254.19.101/30
CONN1_TUNNEL2_AWS_BGP_IP(Neighbor IP)= 169.254.19.101
# CONNECTION2 - AWS => ON PREM ROUTER2
CONN2_TUNNEL1_PresharedKey = NZ.QY3no9.idICQDlYjmRvNP_PYL_Qxy
CONN2_TUNNEL1_ONPREM_OUTSIDE_IP = 3.90.170.14
CONN2_TUNNEL1_AWS_OUTSIDE_IP = 15.197.175.253
CONN2_TUNNEL1_ONPREM_INSIDE_IP = 169.254.230.214/30
CONN2_TUNNEL1_AWS_INSIDE_IP = 169.254.230.213/30
CONN2_TUNNEL1_AWS_BGP_IP = 169.254.230.213
CONN2_TUNNEL2_PresharedKey = SxcxPMMvw6_RD_MJ2PhxDWZIc5YSys4u
CONN2_TUNNEL2_ONPREM_OUTSIDE_IP = 3.90.170.14
CONN2_TUNNEL2_AWS_OUTSIDE_IP = 99.83.145.135
CONN2_TUNNEL2_ONPREM_INSIDE_IP = 169.254.215.250/30
CONN2_TUNNEL2_AWS_INSIDE_IP = 169.254.215.249/30
CONN2_TUNNEL2_AWS_BGP_IP = 169.254.215.249
# INSTRUCTIONS ON GETTING THE VALUES
We will be locating values for a specific connection `CONN1` or `CONN2` and a specific tunnel .. `TUNNEL1` or `TUNNEL2`
For anything starting with CONN1 .. Look in the `CONNECTION1CONFIG.TXT` file
For anything starting with CONN2 .. Look in the `CONNECTION2CONFIG.TXT` file
In each of the above files, for anything showing TUNNEL1 fine the section `IPSec Tunnel #1` in the above files (THE TOP HALF)
In each of the above files, for anything showing TUNNEL2 fine the section `IPSec Tunnel #2` in the above files (THE BOTTOM HALF)
For `ROUTER1_PRIVATE_IP` its the 192.168.12.SOMETHING Private IPv4 Address for `ROUTER1` - Check the `Outputs` of the `ONPREM` CFN Stack for `Private IP of Router1`
For `ROUTER2_PRIVATE_IP` its the 192.168.12.SOMETHING Private IPv4 Address for `ROUTER2` - Check the `Outputs` of the `ONPREM` CFN Stack for `Private IP of Router2`
For `CONN1_TUNNEL1_PresharedKey` open `CONNECTION1CONFIG.TXT`, Locate `IPSec Tunnel #1`, Locate `- Pre-Shared Key` Your key is there
For `CONN1_TUNNEL2_PresharedKey` open `CONNECTION1CONFIG.TXT`, Locate `IPSec Tunnel #2`, Locate `- Pre-Shared Key` Your key is there
For `CONN2_TUNNEL1_PresharedKey` open `CONNECTION2CONFIG.TXT`, Locate `IPSec Tunnel #1`, Locate `- Pre-Shared Key` Your key is there
For `CONN2_TUNNEL2_PresharedKey` open `CONNECTION2CONFIG.TXT`, Locate `IPSec Tunnel #2`, Locate `- Pre-Shared Key` Your key is there
For `CONN1_TUNNEL1_ONPREM_OUTSIDE_IP` its the PublicIPv4 Address of `ROUTER1`
`CONN1_TUNNEL2_ONPREM_OUTSIDE_IP` its the PublicIPv4 Address of `ROUTER1`
`CONN2_TUNNEL1_ONPREM_OUTSIDE_IP` its the PublicIPv4 Address of `ROUTER2`
`CONN2_TUNNEL2_ONPREM_OUTSIDE_IP` its the PublicIPv4 Address of `ROUTER2`
For `CONN1_TUNNEL1_AWS_OUTSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Outside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN1_TUNNEL2_AWS_OUTSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Outside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN2_TUNNEL1_AWS_OUTSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Outside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN2_TUNNEL2_AWS_OUTSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Outside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN1_TUNNEL1_ONPREM_INSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Customer Gateway` the value is there
For `CONN1_TUNNEL2_ONPREM_INSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Customer Gateway` the value is there
For `CONN2_TUNNEL1_ONPREM_INSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Customer Gateway` the value is there
For `CONN2_TUNNEL2_ONPREM_INSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Customer Gateway` the value is there
For `CONN1_TUNNEL1_AWS_INSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN1_TUNNEL2_AWS_INSIDE_IP` open `CONNECTION1CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN2_TUNNEL1_AWS_INSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #1`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN2_TUNNEL2_AWS_INSIDE_IP` open `CONNECTION2CONFIG.TXT`, locate `IPSec Tunnel #2`, locate `#3: Tunnel Interface Configuration`, locate `Inside IP Addresses:`, locate `- Virtual Private Gateway` the value is there
For `CONN1_TUNNEL1_AWS_BGP_IP` the value is the same as `CONN1_TUNNEL1_AWS_INSIDE_IP` (without the /30)
For `CONN1_TUNNEL2_AWS_BGP_IP` the value is the same as `CONN1_TUNNEL2_AWS_INSIDE_IP` (without the /30)
For `CONN2_TUNNEL1_AWS_BGP_IP` the value is the same as `CONN2_TUNNEL1_AWS_INSIDE_IP` (without the /30)
For `CONN2_TUNNEL2_AWS_BGP_IP` the value is the same as `CONN2_TUNNEL2_AWS_INSIDE_IP` (without the /30)