Does Watchguard only keep one AWS Vpn tunnel up?

Hi all, I have just setup a new Amazon Web Services VPN connection into our Watchguard M440 as per the watchguard instructions and the connection is up. AWS configures two tunnels for redundancy. But AWS is telling me that tunnel 2 is down. If I change the tunnel order, they swap over and tunnel one is down and tunnel two is up.
Is this the expected action?

Best Answer


  • james.carsonjames.carson Moderator, WatchGuard Representative

    Using Virtual Interfaces (BOVPN VIF) is how the firewall would keep multiple up. In general, the firewall will only use whichever is on the top of the gateway list (or if you're using dynamic routing, whatever follows the rules you set up.)

    If you're using standard VPN Gateway/Tunnel pairs, the firewall will only bring one gateway up at a time.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.