AWS Config Rule: VPC VPN 2 Tunnels Up

Description: Checks that both VPN tunnels provided by AWS Site-to-Site VPN are in UP status. The rule returns NON_COMPLIANT if one or both tunnels are in DOWN status.

Trigger type: Configuration changes

AWS Region: All supported AWS regions except Middle East (Bahrain), China (Beijing), Asia Pacific (Osaka), Israel (Tel Aviv), China (Ningxia) Region

To resolve this manually, you will first need to identify why both of your tunnels are down for your AWS Site-to-Site VPN. This sometimes won't be a straight forward fix unfortunately, as there could be any number of reasons your tunnels cannot establish, or maintain connectivity to your VPN.

Due to this complexity, it will be hard to answer how to resolve this manually without knowing the root cause of the issue. AWS However have put together a good guide in troubleshooting this issue and we would suggest you start there.

Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here