Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,543 questions
1 answer
One of the answers was accepted by the question author.
Setting Up Site-to-Site VPN for Azure Arc Without Internet Access
A site-to-site VPN needs to be configured to onboard on-premise servers without internet access to Azure Arc. Requesting a step-by-step guide for the configuration process. Thank you in advance.
asked 2024-10-07T14:52:02.1066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 68%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Koppuravuri Krishna Kishore
20
Reputation points
accepted 2024-10-08T14:42:28.74+00:00
Koppuravuri Krishna Kishore
20
Reputation points
1 answer
Do Azure VPN have TTL configuration.
I wanted to know weather Azure Virtual Network Gateway has a TTL configuration. If yes please provide a relevant article for the same.
asked 2024-09-24T18:58:03.4666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 47%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIS%3C/text%3E%3C/svg%3E)
Ibrahim Shaikh
20
Reputation points
edited a comment 2024-10-08T03:37:40.4133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 81%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Sai Prasanna Sinde (Quadrant Resource LLC)
680
Reputation points Microsoft Vendor
2 answers
Site to Site VPN (BGP)
Hello, While creating site to site over routed VPN I see this configuration which actually works fine. ! Tunnel interface (VTI) configuration ! - Create/configure a tunnel interface ! - Configure an APIPA (169.254.x.x) address that does NOT overlap…
asked 2023-03-26T10:32:48.22+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 24%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Ajay Chauhan
41
Reputation points
answered 2024-10-07T04:05:43.4833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 7.000000000000001%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Suman Bikram Singh
20
Reputation points
0 answers
I am trying to create VPN gateway but getting error
I am filling these details and getting error getting this error
asked 2024-10-04T12:19:27.4166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 31%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Arhanti Doshi
65
Reputation points
commented 2024-10-04T12:27:26.27+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
Azure to onprem issue
Hello, We are attempting to troubleshoot connection from Azure to onprem over site-to-site VPN. We are able to ping and connect to instances from onprem to azure but not the other way around. Onprem -> s2s -> Azure (works) both ping and rdp…
asked 2024-09-11T22:44:50.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 0%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Alex Kline
0
Reputation points
commented 2024-10-04T09:54:28.1433333+00:00
Sai Prasanna Sinde (Quadrant Resource LLC)
680
Reputation points Microsoft Vendor
0 answers
Setup Azure P2S VPN using Entra ID (Azure Active Directory) and Certificate based authentication
Dear Azure Community, I am currently working on setting up a Point-to-Site (P2S) VPN using an IKEv2 tunnel with the following requirements: Authentication using Microsoft Entra ID (Azure Active Directory) with MFA Certificate-based Authentication…
asked 2024-10-01T03:41:14.96+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 70%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Prabhu
0
Reputation points
commented 2024-10-04T06:23:14.0233333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
Azure Virtual Network Gateway Fails Deployment
I'm on a trial subscription attempting to create a VM on a VN but can't seem to get the Virtual Network Gateway to successfully deploy. I'm tried dozens of combinations. We need to test out the service prior to moving to a long term subscription. Can…
asked 2024-09-26T15:41:36.2933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 98%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESF%3C/text%3E%3C/svg%3E)
Seth Fuller
0
Reputation points
commented 2024-10-03T12:27:08.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Ganesh Patapati
735
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Deploy new Azure VPN profile (.xml) through intune.
Hi, i have to update user devices with new Azure VPN profile through intune. I have existing profile already deployed and now i want to replace this with new one. ./User/Vendor/MSFT/VPNv2/<profile>/ProfileXML i am getting error 0x87d101f4.…
asked 2024-08-15T20:04:07.2966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 41%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK3%3C/text%3E%3C/svg%3E)
kvidhul-3447
20
Reputation points
accepted 2024-10-02T19:03:15.9133333+00:00
kvidhul-3447
20
Reputation points
2 answers
Accessing file share over P2S VPN using Entra Domain Services as authentication
I am trying to access an Azure file share over P2S Azure VPN. The file share is closed for public access but is accessible via private endpoint. The file share is configured to use Entra Domain Services as authentication. My local machine is not…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 30%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 28.999999999999996%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
2 answers
Internet access over P2S VPN connection
Hey, Is it possible to get internet access over the P2S vpn ( VPN Gateway or VWAN with Virtual Hhub ) I want be able to access the resources within Azure VNET as well as access Internet using the P2S connection, whihc will change my computer IP and…
asked 2022-08-29T19:38:29.403+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 16%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mateusz Kuchniak
6
Reputation points
commented 2024-10-01T15:44:52.5966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 43%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGS%3C/text%3E%3C/svg%3E)
Gregory Suvalian
0
Reputation points
1 answer
Azure OpenVPN connectivity issue
I have some computers that can not connect to our Azure OpenVPN gateway. The process will go through username, password and MFA response then fail with this error: [Error] Connecting to VPN server failed with exception: Connecting to VPN server failed…
asked 2024-09-30T16:44:13.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 43%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERH%3C/text%3E%3C/svg%3E)
Robert Halpop
0
Reputation points
answered 2024-10-01T05:47:47.0166667+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Routing Issues with S2S VPN VNET Peered with ExpressRoute VNET
The Context: I have 3 VNETS (VNET1, VNET2, VNET3). VNET1 has a S2S VPN allowing on-prem devices to connect to Azure. VNET2 has an ExpressRoute allowing another subnet of on-prem devices to connect to Azure. VNET3 also has an ExpressRoute allowing another…
asked 2024-07-02T14:29:17.2566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 73%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER1%3C/text%3E%3C/svg%3E)
RahulRana-1085
30
Reputation points
commented 2024-09-29T13:37:23.43+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
0 answers
Azure P2S VPN connection fails "The certificate’s CN name does not match the passed value"
We've had a point to site VPN gateway configured for quite a while now, but suddenly this week we received the following error when connecting: "The certificate’s CN name does not match the passed value" We make use of self-signed Root and…
asked 2023-09-28T11:40:42.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 80%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Dominique September
1
Reputation point
commented 2024-09-28T11:10:13.06+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 77%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPF%3C/text%3E%3C/svg%3E)
Perrins Financial Services Limited
0
Reputation points
1 answer
One of the answers was accepted by the question author.
ASN number 65515 in the BGP advertisement for the VNet IP space towards the Expressroute peers
When I checked the BGP table for the express route circuit, I see that I have the local ones (for the linked VNet IP space) has the ASN of 65515. Is it a hardcoded value just like 12076? I see that the ASN got removed when advertised to SP. Thanks, …
asked 2022-01-23T18:21:09.7+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 70%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Difan Zhao
41
Reputation points
commented 2024-09-27T20:20:07.33+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 9%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETR%3C/text%3E%3C/svg%3E)
Ted Roy
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Setting up Azure VPN Tunnel to Cisco FTD (Using FMC Console)
Has anyone setup a tunnel from a Cisco FMC to Azure VPN, doesn't matter if its with BGP or not. Is there any documentation out there besides the regular ASA that the website provides? My device is a Cisco FTD 2130 trying to setup a Azure VPN tunnel, no…
asked 2024-09-24T11:33:03.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 49%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELG%3C/text%3E%3C/svg%3E)
Luis Garcia
85
Reputation points
accepted 2024-09-26T22:35:52.33+00:00
Luis Garcia
85
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure traffic routing if both vwan express route connection and traditional express route gateway connection coexists
HI, I have following scenario. Azure region 3 is having traditional hub and spoke connecting to on-premise and other azure regions through WAN network. This set up will migrate to azure vwan . I want to understand Like express route gateway, azure…
asked 2024-09-24T20:55:36.6366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 67%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Siddhesh Rane
61
Reputation points
commented 2024-09-26T11:38:20.1+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
6 answers
Issue with resolving hostnames while connected to p2s Azure VPN
Hi all. Our company has different web apps and web servers hosted at Azure. All people connect to private IPs of those resources via Azure p2s VPN. Everything was good but on some Windows 10 workstations we faced an issue. Some howe it resolves not…
asked 2020-08-11T07:14:00.533+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 41%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
alex2015
1
Reputation point
commented 2024-09-25T20:46:05.2733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 35%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Danny Michaeli
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Problem with VPN site-to-site, app container in a subnet in a vnet peering
I have a small problem with the VPN tunnel that was configured with the Virtual Network Gateway resource. I have 3 resource groups, the GLOBAL resource group is where the Virtual Network Gateway is hosted and it is linked to the 2 resource groups RG-A…
asked 2024-09-19T15:47:03.1433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 43%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EME%3C/text%3E%3C/svg%3E)
Mario E. Esteves Mariño
20
Reputation points
accepted 2024-09-24T22:45:00.1+00:00
Mario E. Esteves Mariño
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Hub Network with NVA and azure firewall and routing between VPN and Express route gateway through firewalls
Hi Team, I have attached the network diagram, Here is set up. There is HUB and Spoke topology with NVA. All traffic between on-premise and azure spoke is passing through NVA Third party location is connected through SDWAN VM over internet. SDWAN VM is…
asked 2024-08-20T21:58:14.7633333+00:00
Siddhesh Rane
61
Reputation points
commented 2024-09-24T19:24:27.5933333+00:00
Siddhesh Rane
61
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Basic VPN SKU with Standard IP via Poweshell
Hi, We are attempting to create VPN Basic SKU. We acknowledge that VPN basic SKU can no longer be invoked from portal. However, according to Microsoft, it is still possible to create using…
asked 2024-09-23T09:13:37.06+00:00
Rusydan (Dan)
141
Reputation points
accepted 2024-09-24T04:24:41.66+00:00
Rusydan (Dan)
141
Reputation points