We're testing out a vMX100 in AWS right now. We have a vanilla test VPC with a public/private subnet and a NAT gateway.
Current state is:
I'm trying to figure out what I am missing in terms of routing/security groups to get the server in the Private subnet to communicate over the AutoVPN.
On the vMX100 and in AWS I do have:
I still can't communicate over the AutoVPN to the server in the private subnet, so I assume I am missing something pretty basic. Any tips for anyone that has implemented a vMX in AWS with a public/private subnet?
You've covered off all the main things.
What about the VPC firewall rules (as opposed to the EC2 security groups)?
I double checked the default security group for the VPC and as a test allowed all traffic inbound/outbound for the remove subnets over the AutoVPN. Unfortunately no change.
I'm going to tear down this VPC and set everything back up again to see if I just missed something along the way. If any other ideas pop up from anyone, happy to try them out.