AWS FAQ: Virtual interface BGP status is down in the AWS console. What should I do?


Your virtual interface status might be down because of configuration issues with the OSI Layer 2 or Border Gateway Protocol (BGP).

OSI Layer 2 configuration

First, verify that your OSI layer 2 is configured correctly by confirming the following:

  1. You have configured the correct VLAN ID with dot1Q encapsulation on your device—such as a router or switch—as displayed in the Portal Information tab as A-end service for your VXC
  2. The peer IP addresses’ configuration is identical on your device, via the Portal and in the AWS Direct Connect console.
  3. Any intermediate devices are configured for VLAN tagging with appropriate VLAN ID, and VLAN-tagged traffic is preserved in the AWS Direct Connect endpoint.
  4. Your device is learning the media access control (MAC) address of the AWS Direct Connect endpoint for the configured VLAN ID from the Address Resolution Protocol (ARP) table.
  5. Your device can ping the Amazon peer IP sourcing from your peer IP.

BGP Configuration

If the OSI layer 2 test results are positive, then confirm the BGP configuration on your device by verifying the following:

  1. The local ASN and remote ASN as provided in the Portal Information tab as A-end service for your VXC.
  2. The neighbor IP address and BGP MD5 password as provided in the Portal Information tab as A-end service for your VXC.
  3. Your device is not blocking ingress or egress from TCP port 179 (BGP) and other appropriate ephemeral ports.
  4. Your device is not advertising more than 100 prefixes to AWS by BGP. By default, AWS only accepts up to 100 prefixes using a BGP session on AWS Direct Connect.

After confirming these configurations, your virtual interface BGP status should now be up.

©2020 Megaport. Megaport, Virtual Cross Connect, VXC and MegaIX are registered trademarks of Megaport (Services) Pty Ltd ACN 607 432 646.

Log in with your credentials

Forgot your details?