![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 34%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,795 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Thank you for reaching out. Based on your questions above.
Can you suggest how to handle overlapping of address space?
Azure VPN Gateway can connect overlapping, on-premises sites with overlapping IP address spaces through network address translation (NAT) capability. You can follow this documentation here to configure NAT with the Azure VPN Gateway
I also have azure FW in azure and connecting through P2S vpn. Is it possible to use user based policies in azure Firewall?
Yes, you can use Azure Firewall and Firewall Policy to control network access in a hybrid network using rules that define allowed and denied network traffic. You can create Network rules and Application Rules based on your requirements to allow and deny traffic. You will have to User Defined Routes to direct the traffic via Azure Firewall. YOu can refer to this tutorial for more information regarding this set-up https://learn.microsoft.com/en-us/azure/firewall/tutorial-hybrid-portal-policy
Hope this helps! Please let me know if you have any additional questions. Thank you!
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.