We have an active support ticket open with Microsoft/Azure.
We are trying to setup a S2S VPN in Azure with our support partner where our resources in Azure are presented on the IPSEC tunnel.
The problem is we have a IP clash between our Azure IP address space and Support partner Address space and other problem is support partner can only facilitate policy based connection.
As we have IP clash, we thought of doing NAT for our private IP address space, however policy based traffic connection doesn't support NAT as per the MS limitations.
We have Azure firewall on our environment between our VPN gateway and resources vnet, is there any way we can do the natting before the traffic reaches the VPN gateway and use the public IP address on the vpn tunnel