edit: RESOLVED: Issue was with AWS Security Groups that someone applied to the servers.
====================================
Hello,
I have an AWS routing issue when using the vMX100, but not sure. Everything worked great with the AWS VPN up. But when the vMX100 was installed (and removed the AWS VPN), we have the following results.
Traffic from our office to AWS
ping is successful (with reply from AWS servers).
Traffic to office from AWS (over autoVPN)
Ping fails. Cannot reach devices in office from AWS.
Can only ping Internet and local VPC instances.
There is no problem connecting to the AWS devices over the autoVPN, but no traffic can be initiated from AWS instances. We have devices trying to sync with other servers in the office, and they are failing.
AWS configuration:
Routing Table: all routes pointing to vMX instance (except 0.0.0.0/0 and local subnet)
NACL: wide open both ways.
AWS Security Group: default (wide open)
vMX100 configuration:
all auto VPN tunnels came up without issue
firewall rules are wide-open to/from the Meraki.
Thank you for any help getting this vMX to work in AWS.
edit: This is the document used for the vMX100 install to AWS.
https://documentation.meraki.com/MX/Installation_Guides/vMX100_Setup_Guide_for_Amazon_AWS