Home

Configured IPsec site-to-site VPN between azure vnet and on-prem RRAS

%3CLINGO-SUB%20id%3D%22lingo-sub-447621%22%20slang%3D%22en-US%22%3EConfigured%20IPsec%20site-to-site%20VPN%20between%20azure%20vnet%20and%20on-prem%20RRAS%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-447621%22%20slang%3D%22en-US%22%3E%3CP%3ESetup%3A%3C%2FP%3E%3CP%3EConfigured%20IPsec%20site-to-site%20VPN%20between%20azure%20vnet%20and%20on-prem%20RRAS.%20I%20want%20Azure%20vm%20to%20access%20internet%20via%20on-prem%20network.%20Have%20tried%20forced%20tunneling%20but%20traffic%20is%20being%20dropped%20after%20going%20through%20RRAS%20and%20network%20gateway.%20We%20are%20not%20doing%20NAT%20on-prem.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20traffic%20coming%20from%20Azure%20VM%20through%20VPN%20tunnel%20would%20be%20decrypted%20at%20RRAS%20to%20private%20IPs%20%3Fwhich%20can%20not%20be%20routed%20to%20internet%20without%20NAT%20%3F%3C%2FP%3E%3CP%3ETried%20configuring%20NAT%20on%20same%20RRAS%20server%20by%20setting%20the%20demand-dial%20interface%20at%20private%20and%20public%20facing%20interface%20as%20NAT%20interface%20but%20it%20didnt%20work....%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-447621%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ENetworking%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EVirtual%20Network%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Mateen Baig
New Contributor

Setup:

Configured IPsec site-to-site VPN between azure vnet and on-prem RRAS. I want Azure vm to access internet via on-prem network. Have tried forced tunneling but traffic is being dropped after going through RRAS and network gateway. We are not doing NAT on-prem.

 

The traffic coming from Azure VM through VPN tunnel would be decrypted at RRAS to private IPs ?which can not be routed to internet without NAT ?

Tried configuring NAT on same RRAS server by setting the demand-dial interface at private and public facing interface as NAT interface but it didnt work....

 

 

 

Related Conversations
MFA and Azure IKEv2 P2S VPN Failing - Timeout Issue?
James Anderson in Azure on
0 Replies
Azure Automation connecting to Exchange with MFA enforced
Chris Johnston in Azure on
13 Replies
Intune Win32 apps error 0x80070002
bjornmertens in Microsoft Intune on
5 Replies
A problem with the Zoom level of a Tab
Tavory in Discussions on
9 Replies