Running-configuration of the CloudEOS and vEOS Router and AWS Specific Cloud
The sample configuration below sets up the running configuration of the CloudEOS and vEOS Router and AWS Specific Cloud. In the configuration, the local-id is the external IP of the router when it is behind a NAT device, and the tunnel destination is the external IP of the AWS Specific Cloud.
ip security ike policy AWS-IKE1 integrity sha1 version 1 local-id 18.104.22.168 ! ike policy ikedefault encryption aes256 ! sa policy AWS-SA1 esp encryption aes128 esp integrity sha1 pfs dh-group 14 ! profile AWS-profile ike-policy AWS-IKE1 sa-policy AWS-SA1 connection start sharded-key LwYbARmDJmpFGAOrAbPGk2uQiWwvbmfU ! profile default ike-policy sa-policy AWS-SA1 shared-key arista ! interface Tunnel1 ip address 169.254.11.162/30 tunnel mode ipsec tunnel source 10.2.0.4 tunnel destination 22.214.171.124 tunnel ipsec profile AWS-profile