Fri May 19, 2023 9:22 pm
Hi! After troubleshooting a few things on my end I found that IPSec policies take over from the routing flow before looking at the routing table. I have a AWS Direct Connect setup with BGP. I was looking at having the IPSec tunnel as a backup in case the Direct Connect ever goes down. At the moment the IPSec tunnel is the primary connection with the Direct Connect as a backup which is not ideal. My current thought is that I would have to have a separate device and use a gateway ping in the Route Table to identify the active and bump the Direct Connect as a lower distance to be the primary. Is there another option?