![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER4%3C/text%3E%3C/svg%3E)
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,776 questions
As you have an Azure VM active, one of the simplest ways to see this is via the Network Interface of the VM, there is an option called "Effective Routes". When this loads, you should the address ranges configured for your local network gateways with a next hop of Virtual Network Gateway.
As you can get from Azure to on-prem, but not the reverse - 99/100 this an issue with the on-prem configuration.
A second note, your NSG rule actually isn't required, it has a default rule allowing "vnet" traffic. When you connect on-prem via VPN, those ranges become part of the system table and are therefore viewed as "vnet".