about routing table configuration

Lary Kos 1 Reputation point
2022-10-26T06:20:35.647+00:00

I have some questions about the default route table of Azure VPN gateway.
I have a Virtual network(10.0.2.0/24),a ec2 host (10.0.2.4) ,and a Virtual appliance(10.0.0.4).
I hope the client of VPN gateway to access the host 10.0.2.4 MUST go through Virtual appliance(10.0.0.4).
The network traffic is then forwarded by Virtual appliance(10.0.0.4) to the host (10.0.2.4).

So I configured routing talbe for VPN gateway:
Address prefixes :10.0.2.0/24
Next hop type: Virtual appliance
Next hop IP address:10.0.0.4

Routing table is configured for the Virtual appliance:
Address prefixes :10.0.2.0/16
Next hop type: Virtual network (10.0.2.0/24)

In theory, the route set by the user is higher than the default route of the system.
The actual situation is that when I disable all the access traffic of the client of VPN gateway in the Virtual appliance (10.0.0.4),
the client of VPN gateway can still access the host (10.0.2.4).
Question:
How to set up routing table, so that vpn client's access to the Virtual network (10.0.2.0/24) must pass through the Virtual appliance(10.0.0.4)?

254169-image.png

Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
87 questions
{count} votes

1 answer

Sort by: Most helpful
  1. JimmySalian-2011 41,961 Reputation points
    2022-10-26T11:02:31.157+00:00

    Hi,

    AFAIK, you will need to setup the VPN gateway type as Routebased and detailed information is over here so please go through the CLI and PS commands to set it up.vpn-gateway-about-vpn-gateway-settings

    Also check the GW configured on the client that should be the VPN GW.

    Hope this helps.
    JS

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments