azure site to site vpn setup connected but no traffic either way

%3CLINGO-SUB%20id%3D%22lingo-sub-1741294%22%20slang%3D%22en-US%22%3Eazure%20site%20to%20site%20vpn%20setup%20connected%20but%20no%20traffic%20either%20way%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1741294%22%20slang%3D%22en-US%22%3E%3CP%3Ehi%20team%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20setup%20vpn%20connection%20between%20my%20azure%20portal%20and%20on-premises%20windows%20server%202019%20machine%20(rras%20server)%2C%20however%20i%20am%20not%20seeing%20any%20traffic.%20My%20setup%20is%20as%20follows%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Emy%20azure%20vm%20has%20private%20ip%20of%2010.1.0.4%20and%20public%20ip%20of%2020.180.x.x.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Emy%20on-premises%20windows%20server%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eethernet%20adaptor%3C%2FP%3E%3CP%3Eip%20add%20%3A%2010.0.2.15%3C%2FP%3E%3CP%3Enetmask%20255.255.255.0%3C%2FP%3E%3CP%3Egateway%2010.0.2.2%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eppp%20adaptor%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eip%20add%20169.254.0.x%3C%2FP%3E%3CP%3Enetmask%20255.255.0.0%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Emy%20azure%20vm%20network%20details%3C%2FP%3E%3CP%3Eip%20add%20v6%2010.1.0.4%3C%2FP%3E%3CP%3Enetmask%20255.255.255.192%3C%2FP%3E%3CP%3Egateway%2010.1.0.1%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Efrom%20windows%20server%20%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eping%2010.1.0.4%20fails%20as%20request%20timed%20out%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Efrom%20azure%20vm%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eping%2010.0.2.15%20fails%20as%20request%20timed%20out%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20can%20rdp%20and%20ping%20public%20ip%20address%20of%20azure%20vm%20from%20windows%20server%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1745042%22%20slang%3D%22en-US%22%3ERe%3A%20azure%20site%20to%20site%20vpn%20setup%20connected%20but%20no%20traffic%20either%20way%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1745042%22%20slang%3D%22en-US%22%3EHave%20you%20check%20NSGs%20%3F%20If%20rules%20are%20there%20to%20allow%20the%20traffic%20%3F%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1758593%22%20slang%3D%22en-US%22%3ERe%3A%20azure%20site%20to%20site%20vpn%20setup%20connected%20but%20no%20traffic%20either%20way%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1758593%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F818447%22%20target%3D%22_blank%22%3E%40charneet%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ETry%20this%20link%20and%20see%20if%20it%20helps%20you.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Foktotechnologies.ca%2F2018%2F12%2F18%2Fcreate-a-s2s-connection-between-on-prem-and-azure-network%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Foktotechnologies.ca%2F2018%2F12%2F18%2Fcreate-a-s2s-connection-between-on-prem-and-azure-network%2F%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

hi team,

 

 

I have setup vpn connection between my azure portal and on-premises windows server 2019 machine (rras server), however i am not seeing any traffic. My setup is as follows:

 

my azure vm has private ip of 10.1.0.4 and public ip of 20.180.x.x.

 

my on-premises windows server

 

ethernet adaptor

ip add : 10.0.2.15

netmask 255.255.255.0

gateway 10.0.2.2

 

ppp adaptor

 

ip add 169.254.0.x

netmask 255.255.0.0

 

 

my azure vm network details

ip add v6 10.1.0.4

netmask 255.255.255.192

gateway 10.1.0.1

 

from windows server ,

 

ping 10.1.0.4 fails as request timed out

 

from azure vm 

 

ping 10.0.2.15 fails as request timed out

 

 

I can rdp and ping public ip address of azure vm from windows server

 

 

3 Replies

@charneet  screenshot windows on premises routing table

Have you check NSGs ? If rules are there to allow the traffic ?