Continue with my previous post Automate VPN connection and its TGW attachment, in this post I would like to share the solution for VPN failover via TGW attachment. The key components in the solution are: Network Manager for Transit GatewayEventBridgeLambda The basic idea is: Register TGW to Network Manager, as Network Manager can monitor the tunnel … Continue reading Automate VPN failover via TGW attachment
Tag: VPN
kubectl unable to connect minikube on VPN
I installed minikube in my Mac, and I noticed that kubectl is unable to connect to it while my Mac in on VPN (Cisco Anyconnect). $ kubectl cluster-infoKubernetes master is running at https://192.168.99.100:8443To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.Unable to connect to the server: dial tcp 192.168.99.100:8443: i/o timeout Here are … Continue reading kubectl unable to connect minikube on VPN
Run 32 bits fortinet SSL VPN in 64 bits Linux (Fedora 20)
I am using Fedora 20 64bits on my new Ultrabook. Here is how I set up the Fortinet SSL VPN 32 bits client: 1) Download the tar ball file, ftp://ftp.2rosenthals.com/pub/FortiNet/forticlientsslvpn_linux_4.0.2254.tar.gz. 2) Extract it [jchen@latte software]$ tar xvzf forticlientsslvpn_linux_4.0.2254.tar.gz forticlientsslvpn/ forticlientsslvpn/helper/ forticlientsslvpn/helper/sysconfig.linux.sh forticlientsslvpn/helper/config forticlientsslvpn/helper/subproc forticlientsslvpn/helper/fortisslcacert.pem forticlientsslvpn/helper/License.txt forticlientsslvpn/helper/linux.rtbackup forticlientsslvpn/helper/fortisslclient.crt forticlientsslvpn/helper/setup.linux.sh forticlientsslvpn/helper/fortisslclient.key forticlientsslvpn/helper/cleanup.linux.sh forticlientsslvpn/forticlientsslvpn 3) As you can … Continue reading Run 32 bits fortinet SSL VPN in 64 bits Linux (Fedora 20)
Please 100% Match the Internal IP Address
This topic poped up in my mind when I was writing the article ‘A Good Document Helps You Build Site2Site VPN’. Looking back in my personal VPN toubleshooting history, the case I am going to talk is listed on top of the reasons that cause site to site VPN not to work. The most common … Continue reading Please 100% Match the Internal IP Address
A Good Document Helps You Build Site2Site VPN
Building up a site to site IPsec VPN is not a hard thing to do. But of course you have to understand the principles at first. If you already knew what the two phases of negotiations are, now you can jump directly to the next graph. Otherwise, you should start from learning some fundamental VPN … Continue reading A Good Document Helps You Build Site2Site VPN