Hi @Zakdxb ,
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to use Azure VPN gateway to establish RDP session to a OnPrem machine from your local machine.
There is a way to achieve this, but not the way you intend to.
Directly accessing the IP address of Azure VPN gateway, doing a NAT and connecting to an OnPrem resource is not possible.
We cannot make Azure VPN gateway listen on custom Ports and do any sort of NAT configuration.
Method #1
- You would need a Jump VM sitting in Azure Virtual Network (attached to the VPN gateway) with Public IP Address.
- You should RDP to this JumpVM normally, and from here, you can RDP to any of the require OnPrem resource
Method #2
- BGP is a must for this scenario
- Configure P2S and connect your local machine to Azure VPN
- About Point-to-Site VPN
- Post this, make sure you add the OnPrem routes in the "Additional Routes to Advertise" section of the P2S blade
- Refer : Advertise custom routes for P2S VPN clients
- You can skip the above for non-windows devices.
- This scenario is clearly explained under : One VNet and a branch office (BGP)
Alternative Method
- This does not use Azure VPN gateway, or Azure at all.
- If your OnPrem VPN device supports NATing, you can directly access the IP of the Firewall at OnPrem and make it NAT to the desired OnPrem device
I hope this explains the various possibilities.
Thanks,
Kapil
----------------------------------------------------------------------------------------------------------------
Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.