Your next step is to obtain VPN configuration data from the network-prod AWS account and use it to configure your on-premises customer gateway device.
First, download a configuration file containing the details of the site-to-site VPN connection:
network-prod AWS accountManagement console associated with the AWSAdministratorAccess role.VPCSite-to-Site VPN ConnectionsDownload Configuration.Generic.Use the configuration data to configure your on-premises customer gateway. See Your customer gateway device in the AWS Site-to-Site VPN documentation for details.
Simulating On-Premises Customer Gateway: If you’re either experimenting with AWS Site-to-Site VPN connections or demonstrating how they work, you can easily simulate a customer on-premises environment and customer gateway. See Simulating Site-to-Site VPN Customer Gateways Using strongSwan for details on setting up an open source based VPN gateway in a separate VPC that simulates an on-premises environment.
Ensure that your on-premises router configuration has been updated to route network traffic destined for the CIDR ranges allocated to your AWS environment to your customer gateway.
After your on-premises customer gateway has been configured, check the status of your VPN connection.
Site-to-Site VPN ConnectionsTunnel Details.UP state.If at least one of the tunnels does not come up, then see Troubleshooting your customer gateway device