{"id":491,"date":"2022-09-29T17:27:43","date_gmt":"2022-09-29T22:27:43","guid":{"rendered":"https:\/\/cloudlearning365.com\/?p=491"},"modified":"2025-08-19T16:21:56","modified_gmt":"2025-08-19T21:21:56","slug":"aviatrix-site-to-cloud-connection-demystified","status":"publish","type":"post","link":"https:\/\/cloudlearning365.com\/?p=491","title":{"rendered":"Aviatrix External Connection demystified"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">When working with Aviatrix External Connections, it could be confusing to understand how tunnels are established. I will take you through three scenarios and hopefully help to planning to Aviatrix External connections with other vendors.<\/p>\n\n\n\n<!--more-->\n\n\n\n<p class=\"wp-block-paragraph\">This article focuses on building External connections from this menu path:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Controller -&gt; Multi-Cloud Transit -&gt; Setup -&gt; External Connections<\/strong> or<br><strong>CoPilot GUI \u2192 Networking \u2192 Connectivity \u2192 External Connections (S2C) \u2192 + External Connection \u2192 External Device \u2192 Type:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>BGP over IPSec<\/li>\n\n\n\n<li>BGP over GRE<\/li>\n\n\n\n<li>BGP over LAN<\/li>\n\n\n\n<li>Static Routing over IPSec \u2192 Static Routing Type: Active Mesh<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">You can only select BGP-capable Aviatrix Gateways from this path, such as Aviatrix Transit Gateway, Aviatrix BGP Spoke Gateway or Aviatrix Edge Gateway. Also the IPSec tunnel can only be route based.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The other path: <strong>Controller -&gt; Site2Cloud -&gt; Setup -&gt; Add New<\/strong>  or <br><strong>CoPilot -&gt; Networking -&gt; Connectivity -&gt; External Connections (S2C) -&gt; + External Connection -&gt;  External Device -&gt; Type : Static Routing over IPSec -&gt; Static Routing Type: Unmapped NAT or Mapped NAT<\/strong> can only build static mapped\/unmapped connections. <span style=\"text-decoration: underline;\">This path is out of the scope of this blog.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">To start with. I&#8217;ve deployed two Aviatrix Transits using following code:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>module \"mc-transit-1\" {\n  source  = \"terraform-aviatrix-modules\/mc-transit\/aviatrix\"\n  version = \"2.2.1\"\n  cloud = \"aws\"\n  region = \"us-east-1\"\n  cidr = \"10.100.0.0\/23\"\n  account = \"aws-lab-jye\"\n  name = \"transit1\"\n  local_as_number = 65001\n}\n\nmodule \"mc-transit-2\" {\n  source  = \"terraform-aviatrix-modules\/mc-transit\/aviatrix\"\n  version = \"2.2.1\"\n  cloud = \"aws\"\n  region = \"us-east-1\"\n  cidr = \"10.200.0.0\/23\"\n  account = \"aws-lab-jye\"\n  name = \"transit2\"\n  local_as_number = 65002\n}<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">This code created four transit gateways, a pair for each transit with following public IPs<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1007\" height=\"346\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-68.png\" alt=\"\" class=\"wp-image-492\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-68.png 1007w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-68-300x103.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-68-768x264.png 768w\" sizes=\"auto, (max-width: 1007px) 100vw, 1007px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td>Transit Name<\/td><td>Public IP<\/td><\/tr><tr><td>transit1<\/td><td>54.225.107.173<\/td><\/tr><tr><td>transit1-hagw<\/td><td>3.229.43.96<\/td><\/tr><tr><td>transit2<\/td><td>52.200.22.74<\/td><\/tr><tr><td>transit2-hagw<\/td><td>3.212.254.112<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario one<\/h3>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"266\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-Single-Remote-GW-1-1024x266.png\" alt=\"\" class=\"wp-image-658\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-Single-Remote-GW-1-1024x266.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-Single-Remote-GW-1-300x78.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-Single-Remote-GW-1-768x200.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-Single-Remote-GW-1.png 1080w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">One Remote Gateway, no Remote Gateway HA<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We selected Transit1, which have two gateways: transit1 and transt1-hagw <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We entered <strong>one <\/strong>target IP as Remote Gateway IP<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"517\" height=\"774\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-69.png\" alt=\"\" class=\"wp-image-494\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-69.png 517w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-69-200x300.png 200w\" sizes=\"auto, (max-width: 517px) 100vw, 517px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">After the connection is created, you can observe the tunnels via Multi-Cloud Transit -&gt; List -&gt; Transit Gateway -&gt; Select Transit1 -&gt; Details\/Diag -&gt; Connections &#8211; &lt;connection name&gt;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Note how two tunnels will be created from each Transit Gateway towards the single Remote Gateway IP<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"813\" height=\"251\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-71.png\" alt=\"\" class=\"wp-image-496\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-71.png 813w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-71-300x93.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-71-768x237.png 768w\" sizes=\"auto, (max-width: 813px) 100vw, 813px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">We can also observe this more clearly from CoPilot -&gt; Cloud Routes -&gt; Site 2 Cloud. We can clearly see the source coming from both transit gateways and target to a single IP. Will use CoPilot screenshot going forward.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"296\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-72-1024x296.png\" alt=\"\" class=\"wp-image-497\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-72-1024x296.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-72-300x87.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-72-768x222.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-72.png 1386w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Note: There will be a bit delay before CoPilot can reflect the change.<br><br>Equivalent workflow in <strong>CoPilot \u2192<\/strong> <strong>Networking \u2192 Connectivity \u2192 External Connections (S2C) \u2192 + External Connection<\/strong><br>Specify only a <strong>single<\/strong> Remote Device 1 Tunnel Destination IP<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"847\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-1024x847.png\" alt=\"\" class=\"wp-image-1746\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-1024x847.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-300x248.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-768x635.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-1536x1270.png 1536w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98-363x300.png 363w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-98.png 1941w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Notice how <strong>Remote Device IP<\/strong> point to the same public IP from both primary and HAGW.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"110\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-1024x110.png\" alt=\"\" class=\"wp-image-1749\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-1024x110.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-300x32.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-768x83.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-1536x166.png 1536w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-2048x221.png 2048w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-100-500x54.png 500w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario two<\/h3>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"267\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-dual-Remote-GWs-2-1024x267.png\" alt=\"\" class=\"wp-image-659\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-dual-Remote-GWs-2-1024x267.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-dual-Remote-GWs-2-300x78.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-dual-Remote-GWs-2-768x201.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-No-Remote-GW-HA-dual-Remote-GWs-2.png 1080w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-size: revert;background-color: var(--wp--preset--color--background);color: var(--wp--preset--color--foreground);font-family: var(--wp--preset--font-family--system-font)\">Two Remote Gateways, no Remote Gateway HA<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We selected Transit1, which have two gateways: transit1 and transt1-hagw<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We entered&nbsp;<strong>two&nbsp;<\/strong>target IPs as Remote Gateway&nbsp;IP separated by comma:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"516\" height=\"767\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-74.png\" alt=\"\" class=\"wp-image-499\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-74.png 516w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-74-202x300.png 202w\" sizes=\"auto, (max-width: 516px) 100vw, 516px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"> Still only <strong>two <\/strong>tunnels will be created. <\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>First tunnel from primary gateway to first remote gateway IP<\/li>\n\n\n\n<li>Second tunnel from HA gateway to second remote gateway IP<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"135\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-73-1024x135.png\" alt=\"\" class=\"wp-image-498\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-73-1024x135.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-73-300x40.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-73-768x101.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-73.png 1108w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Scenario Three<\/h3>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"267\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2-1024x267.png\" alt=\"\" class=\"wp-image-719\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2-1024x267.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2-300x78.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2-768x201.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2-500x131.png 500w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-S2C-connection-scenarios-Remote-GW-HA-Dual-Remote-GWs-2.png 1080w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-size: revert;color: var(--wp--preset--color--foreground);font-family: var(--wp--preset--font-family--system-font);background-color: var(--wp--preset--color--background)\">Two Remote Gateway, Remote Gateway HA<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-size: revert;background-color: var(--wp--preset--color--background);color: var(--wp--preset--color--foreground);font-family: var(--wp--preset--font-family--system-font)\">We selected Transit1, which have two gateways: transit1 and transt1-hagw<\/span> <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We entered&nbsp;<strong>two&nbsp;<\/strong>target IPs as Remote Gateway&nbsp;IP separated by comma:  <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Note: When Remote Gateway HA is enabled, you cannot enter same IP as Remote Gateway IP and Backup Remote Gateway IP, makes sense:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"559\" height=\"707\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-75.png\" alt=\"\" class=\"wp-image-502\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-75.png 559w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-75-237x300.png 237w\" sizes=\"auto, (max-width: 559px) 100vw, 559px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"> With Enable Remote Gateway HA checked, enter two different IP for Remote Gateway and Backup Remote Gateway <\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"409\" height=\"768\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-76.png\" alt=\"\" class=\"wp-image-503\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-76.png 409w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-76-160x300.png 160w\" sizes=\"auto, (max-width: 409px) 100vw, 409px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Now four tunnels will be created, each transit gateway will try to establish a tunnel with both remote gateways<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"194\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-77-1024x194.png\" alt=\"\" class=\"wp-image-504\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-77-1024x194.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-77-300x57.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-77-768x145.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/09\/image-77.png 1121w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">2022-10-17 Addition for Tunnel IPs<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">In above examples, I have left tunnel IP, pre-shared keys blank, so they are generated by Aviatrix automatically, and then can be downloaded as configuration file.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Aviatrix is looking for \/30 for IPSec tunnel IPs, and \/29 for GRE tunnel IPs. (Requirement for TGW Connect)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Here&#8217;s an reference example to plan for those IPs:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"561\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs-1024x561.png\" alt=\"\" class=\"wp-image-731\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs-1024x561.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs-300x164.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs-768x421.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs-500x274.png 500w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/Aviatrix-Transit-to-VNG-Full-Mesh-Tunnel-IPs.png 1315w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">From transit1 to transit2, notice I placed &#8220;|&#8221; in between BGP neighbors, first IP represent the primary GW and second IP represent HA GW<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Local Tunnel IP:           169.254.21.2\/30,169.254.21.6\/30\n\n                                  |               |\nRemote Tunnel IP:          169.254.21.1\/30,169.254.21.5\/30\n\n\nLocal Tunnel IP (Backup):  169.254.21.10\/30,169.254.21.14\/30\n                                  |               |\nRemote Tunnel IP (Backup): 169.254.21.9\/30,169.254.21.13\/30<\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"574\" height=\"1024\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74-574x1024.png\" alt=\"\" class=\"wp-image-732\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74-574x1024.png 574w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74-168x300.png 168w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74-768x1370.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74-861x1536.png 861w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-74.png 998w\" sizes=\"auto, (max-width: 574px) 100vw, 574px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">From transit2 back to transit1, notice I placed &#8220;|&#8221; in between BGP neighbors, first IP represent the primary GW and second IP represent HA GW<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Local Tunnel IP:           169.254.21.1\/30,169.254.21.9\/30\n                                  |               |                                                     Remote Tunnel IP:          169.254.21.2\/30,169.254.21.10\/30\n\n\nLocal Tunnel IP (Backup):  169.254.21.5\/30,169.254.21.13\/30\n                                  |               |\nRemote Tunnel IP (Backup): 169.254.21.6\/30,169.254.21.14\/30<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"593\" height=\"1024\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75-593x1024.png\" alt=\"\" class=\"wp-image-733\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75-593x1024.png 593w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75-174x300.png 174w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75-768x1327.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75-889x1536.png 889w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-75.png 1018w\" sizes=\"auto, (max-width: 593px) 100vw, 593px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">CoPilot -&gt; Cloud Routes -&gt; Site 2 Cloud shows the IPSec tunnels:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"295\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-1024x295.png\" alt=\"\" class=\"wp-image-735\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-1024x295.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-300x86.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-768x221.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-1536x443.png 1536w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-2048x590.png 2048w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-1000x288.png 1000w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-77-500x144.png 500w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">CoPilot -&gt; Cloud Routes -&gt; BGP Info shows the neighbor relationship:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"517\" src=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-1024x517.png\" alt=\"\" class=\"wp-image-734\" srcset=\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-1024x517.png 1024w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-300x152.png 300w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-768x388.png 768w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-1536x776.png 1536w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-2048x1035.png 2048w, https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/10\/image-76-500x253.png 500w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>When working with Aviatrix External Connections, it could be confusing to understand how tunnels are established. I will take you through three scenarios and hopefully help to planning to Aviatrix External connections with other vendors.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[2],"tags":[],"class_list":["post-491","post","type-post","status-publish","format-standard","hentry","category-aviatrix"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/posts\/491","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=491"}],"version-history":[{"count":17,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/posts\/491\/revisions"}],"predecessor-version":[{"id":1750,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=\/wp\/v2\/posts\/491\/revisions\/1750"}],"wp:attachment":[{"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=491"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=491"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cloudlearning365.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=491"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}