Construction of a VPN Site2Site Tunnel from a Virtual Network Gateway (Azure) to a Cisco Gateway

Fluchtmann, Gunnar 0 Reputation points
2023-05-11T06:42:56.04+00:00
Hi community,

following challenge: Construction of a VPN Site2Site Tunnel from a Virtual Network Gateway (Azure) to a Cisco Gateway.
The connection for IKE phase 1 works, but phase 2 does not. On the Cisco side I arrive with the following:

local ident (addr/mask/prot/port): (0.0.0.0/0.0.0.0/0/0)
remote ident (addr/mask/prot/port): (0.0.0.0/0.0.0.0/0/0)
   
Now my question: Where do I fill in this information on the Azure side?
  
Greeting Gunnar
Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,443 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Konstantinos Passadis 17,456 Reputation points MVP
    2023-05-11T06:56:42.4166667+00:00

    Hello @Fluchtmann, Gunnar !

    Welcome to Microsoft QnA!

    I understand that you need to connect Cisco Gateway with Azure via VPN

    Azure supports VPN with Cisco

    Sample links for Help

    https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal

    https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-3rdparty-device-config-cisco-asa

    On Azure you must create a Local Network Gateway which represents Cisco Device

    Then you can configure the local network gateway settings to match the remote information provided by the Cisco gateway. This can be done in the "Local network gateway" section of the Virtual network gateway configuration in Azure.

    When you create the Local Gateway ( Again it represents the On Premises Device) , you can set address space and tye of routing (Policy or route based)

    You may need to configure the "Connection type" setting to be "Policy-based" instead of "Route-based" in order to match the Cisco gateway configuration.

    I hope this helps!

    Kindly mark the answer as Accepted and Upvote in case it helped!

    Regards

    0 comments No comments