P2S VPN to Windows Virtual Desktop (WVD)

%3CLINGO-SUB%20id%3D%22lingo-sub-1128110%22%20slang%3D%22en-US%22%3EP2S%20VPN%20to%20Windows%20Virtual%20Desktop%20(WVD)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1128110%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20there%20any%20way%20for%20us%20to%20setup%20a%20P2S%20VPN%20between%20on-prem%20and%20Windows%20Virtual%20Desktop%20and%20prevent%20access%20from%20anything%20else%20than%20this%20tunnel%3F%20The%20reason%20is%20that%20we%20have%20customers%20that%20should%20only%20have%20access%20to%20connect%20to%20the%20service%20from%20one%20single%20computer.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EConditional%20access%20policies%20are%20able%20to%20prevent%20IP's%20not%20comming%20from%20the%20customer%2C%20but%20not%20from%20this%20specific%20laptop%20since%20all%20internal%20IP's%20are%20NAT%3Aed%20out%20on%20the%20Internet.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1360482%22%20slang%3D%22en-US%22%3ERe%3A%20P2S%20VPN%20to%20Windows%20Virtual%20Desktop%20(WVD)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1360482%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F531826%22%20target%3D%22_blank%22%3E%40jensiron%3C%2FA%3E%26nbsp%3BHello%2C%20I%20see%20that%20they%20have%20not%20answered%20your%20question.%20I%20have%20an%20identical%20scenario%20in%20which%20I%20want%20to%20deploy%20P2S%20VPN%20to%20azure%20from%20an%20external%20client%20so%20that%20it%20connects%20to%20WVD%20and%20sees%20that%20the%20latency%20issues%20produced%20by%20a%20normal%20internet%20connection%20are%20mitigated.%20You%20know%20something%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1375904%22%20slang%3D%22en-US%22%3ERe%3A%20P2S%20VPN%20to%20Windows%20Virtual%20Desktop%20(WVD)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1375904%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F656038%22%20target%3D%22_blank%22%3E%40raaloc7777%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWill%20the%20P2S%20VPN%20decrease%20the%20latency%20for%20WVD%3F%3C%2FP%3E%0A%3CP%3EI%20have%20a%20Chinese%20customer%20that%20has%20big%20latency%20for%20WVD%20because%20of%20the%20Great%20Firewall%2C%20but%20they%20do%20not%20have%20budget%20for%20ExpressRoute%2C%20I%20am%20considering%20VPN%2C%20but%20I%20assume%20VPN%20can%20only%20increase%20latency%20because%20of%20the%20additional%20hops.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1379271%22%20slang%3D%22en-US%22%3ERe%3A%20P2S%20VPN%20to%20Windows%20Virtual%20Desktop%20(WVD)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1379271%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F656038%22%20target%3D%22_blank%22%3E%40raaloc7777%3C%2FA%3EWhat%20kind%20of%20latency%20issues%20are%20you%20experiencing%3F%20Do%20you%20have%20the%20surrounding%20applications%20in%20Azure%20as%20well%20as%20the%20actual%20VDI%20solution%3F%3CBR%20%2F%3E%3CBR%20%2F%3EI%20don't%20think%20it%20is%20possible%20to%20create%20a%20VPN%20in%20to%20the%20service%20as%20it%20looks%20like%20today.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
New Contributor

Is there any way for us to setup a P2S VPN between on-prem and Windows Virtual Desktop and prevent access from anything else than this tunnel? The reason is that we have customers that should only have access to connect to the service from one single computer.

 

Conditional access policies are able to prevent IP's not comming from the customer, but not from this specific laptop since all internal IP's are NAT:ed out on the Internet.

3 Replies
Highlighted

@jensiron Hello, I see that they have not answered your question. I have an identical scenario in which I want to deploy P2S VPN to azure from an external client so that it connects to WVD and sees that the latency issues produced by a normal internet connection are mitigated. You know something?

Highlighted

@raaloc7777 

Will the P2S VPN decrease the latency for WVD?

I have a Chinese customer that has big latency for WVD because of the Great Firewall, but they do not have budget for ExpressRoute, I am considering VPN, but I assume VPN can only increase latency because of the additional hops.

Highlighted

@raaloc7777What kind of latency issues are you experiencing? Do you have the surrounding applications in Azure as well as the actual VDI solution?

I don't think it is possible to create a VPN in to the service as it looks like today.