Dec 07 2017 06:36 AM - edited Dec 07 2017 06:52 AM
I have point to site VPN to Azure working with RADIUS auth and can access resources in the vNet. I would like to be able to route traffic out to the internet over that VPN connection. Can this be done?
If not, how would I replicate this with Azure services without deploying something like a Cisco virtual device?
thanks
Dec 13 2017 08:31 AM
Not the expert, but i believe what you are looking for is force tunneling.
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-forced-tunneling-rm
Don't believe it can be done over a P2S connection though.
Dec 13 2017 08:33 AM
Thanks but needs to P2S, site to site is not an option in this case.
I have got a solution by putting RRAS in Azure. MS don't support RRAS in Azure, but it appears to be working at the moment.
Jun 20 2018 10:18 PM
Jun 21 2018 01:02 AM
IIRC I just had to add the internal interface to NAT.
Jun 30 2019 02:00 AM
@Ryan Clark would you mind sharing how you did that exactly?
Mar 02 2023 04:04 AM
NAT limitations
NAT is supported for IPsec/IKE cross-premises connections only. VNet-to-VNet connections or P2S connections aren't supported