Forum Discussion
On-prem connect with S2S VPN to Azure / users on P2S to Azure cannot connect to S2S on-prem resourc
- I got it working in the end, issue was with onprem firewall S2S configuration in the regards of the P2S subnet phase2 encryption/authentication and pfs. So BGP was not needed.
J-La026
That does seem to be the case as BGP being enabled is referenced in multiple Microsoft documents related to the scenario and in this document specifically referencing a 'users need access to resource in Azure and/or on-prem resources' use case: https://learn.microsoft.com/en-us/azure/vpn-gateway/work-remotely-support
Also keep in mind whenever you make changes to configurations a new point-to-site vpn profile needs to be downloaded from the azure portal to get the updated configurations.
J-La026 In regards to
"I got it working in the end, issue was with onprem firewall S2S configuration in the regards of the P2S subnet phase2 encryption/authentication and pfs. So BGP was not needed."
Could you please elaborate on what you changed on the onprem firewall? It sounds like you are using PFSense onprem and I have this exact issue that I've been fighting for a couple of days.
Thank you for any feedback.
- Ah got it! Good to know BGP is not required, and glad you got it working!
