Azure Site To site doubt with fortiGate

orlando sanchez 1 Reputation point
2020-08-01T01:34:25.433+00:00

Good afternoon I have a query, I have created a VPN site to Site with a client that has a FortiClient 6.0.3. Firewall, I have the tunnel established and connected but it does not generate traffic, now on the side where they have the firewall they told us that the traffic Since it is unidirectional and it must be generated from Azure to onpremise, I understood that the Site to site Azure communications were bidirectional but I am not sure, if they are unidirectional as it should do the configuration of the Azure side, they mentioned on the firewall side that we should do NAT-T, NAT-T is supported by Azure, what alternative do I have to avoid putting a VPN appliance in the middle?

thanks in advance

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,555 questions
{count} votes

1 answer

Sort by: Most helpful
  1. orlando sanchez 1 Reputation point
    2020-08-03T15:13:47.38+00:00

    Thank you very much for the information, I will check the documentation that you send me, the, the installation was made by another person and when I could not move forward, I will pass it to me, I will check this documentation, grateful for your help. The purpose is that the client connects to an onpremise service, but whoever provides onpremise accepts only public IP addresses to make the site-to-site connection and that any virtual machine within azure must leave with public IP for the connection


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.