网络工程 - 带有 BGP 的 Sonicwall 无法路由到 AWS VPN - 吾爱随笔录

我正在尝试让我们本地的Sonicwall NSA 2600 在 VPC 内连接到 AWS VPN。我有 IKE 部分工作，AWS 显示两个管道已连接

BGP 路由在路由器中显示为 up

(config-routing)# show routing bgp summary
BGP router identifier 192.168.1.3, local AS number 65000
BGP table version is 8737
2 BGP AS-PATH entries
0 BGP community entries

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
169.254.45.245  4  7224   51909   63298     8736    0    0 5d20h55m        1
169.254.46.161  4  7224   52390   63791     8736    0    0 5d20h55m        1

Total number of neighbors 2

令人莫名其妙的是，一切似乎都在那里。但是试图让任何东西路由到 174.0.0.0/16 块是行不通的（我知道这是一个公共块，但我目前无法更改它）

(config-routing)# show routing nsm database

C    *> 169.254.45.244/30 is directly connected, T2
C    *> 169.254.45.247/32 is directly connected, T2
C    *> 169.254.46.160/30 is directly connected, T1
C    *> 169.254.46.163/32 is directly connected, T1
B    *> 174.0.0.0/16 [20/100] via 169.254.46.161, T1, 5d20h57m
C    *> 192.168.1.0/24 is directly connected, X0

我从来没有处理过 BGP，所以我完全不知道如何进一步调试它，或者确定如何让它进出 VPC。我无法通过内部 IP 获得 ping、RDC 或 SSH。

添加从我的 PC 获得的路由表

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.3    192.168.1.153    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.1.0    255.255.255.0         On-link     192.168.1.153    281
    192.168.1.153  255.255.255.255         On-link     192.168.1.153    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.153    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     192.168.1.153    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     192.168.1.153    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.1.3  Default
===========================================================================

Sonicwall 路由中有一条路由

我玩了一些并正确列出了 BGP 路由，但仍然没有让流量流动

   Network          Next Hop            Metric LocPrf Weight Path
*  174.0.0.0        169.254.45.245         200             0 7224 i
*>                  169.254.46.161         100             0 7224 i
*> 192.168.1.0      0.0.0.0                       100  32768 i