I created a new VPN connection, but in the configuration, it has the same tunnel interface and Border Gateway Protocol (BGP) IP addresses as one of my other VPN connections. How can I resolve this so that the new VPN connection has unique tunnel interface and BGP IP addresses?

To resolve this, follow these instructions:

  1. In the Amazon VPC Management Console, delete the VPN connection with the duplicate tunnel IP addresses and wait for the connection state to update to Deleted. For more information, see Deleting a VPN Connection.
  2. Create a new customer gateway using a temporary IP address (for example, use an Elastic IP address, or something similar to 1.1.1.1/2.2.2.2). For more information, see Create a Customer Gateway.
  3. Create a new temporary VPN connection between the virtual private gateway and this new customer gateway. Wait for the connection state to update to Available. For more information, see Setting Up the VPN Connection.
  4. Create another temporary VPN connection with a new temporary customer gateway by repeating steps 2 and 3.
    Note: This is to ensure that the tunnel interface IP addresses do not overlap with any of the already existing VPN tunnels.
  5. Re-create the VPN connection between the virtual private gateway and the original customer gateway (not the temporary customer gateways created in steps 2-4).
  6. Wait for the connection state to change to Available, and then verify that the new configuration is unique.
  7. Delete both the temporary VPN connections and temporary customer gateways created in steps 2-4.

You should now have a VPN connection that has unique IP addresses for the tunnel interface and BGP configuration.

VPN, tunnel interface, BGP, duplicate IP addresses


Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center

Published: 2017-03-20