AWS Site-to-Site VPN logging not working

oliva5

8/23/24, 7:24 AM

Anyone encountered a problem where logging to CloudWatch for Site-To-Site VPN isn't working even though logging is enabled?

The only log file that is created is one with the title "log_stream_created_by_aws_to_validate_log_delivery_subscriptions" and content "Permissions are set correctly to allow AWS CloudWatch Logs to write into your logs while creating a subscription.". No other logs are created or written, so I am unable to debug VPN connection. Any ideas?

0 + 1

vpn

ipsec

site-to-site-vpn

amazon-web-services

Tim

8/23/24, 7:46 AM

I remember that it is fiddly to get working, but I've only enabled VPN logging once. From memory you have to set it up when you create the VPN connection, you can't add it later. Perhaps you could post your VPC settings, particularly around logging, for people to look at.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: AWS Site-to-Site VPN logging not working

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.