This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 50%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPD%3C/text%3E%3C/svg%3E)
Hello, I am currently facing a network configuration challenge on Microsoft Azure, and I'm seeking assistance in resolving the issue. I have set up two Windows virtual machines in one subnet, and another Windows virtual machine (VM-Gateway) in a separate subnet. The goal is to route outgoing traffic from the two VM Windows through VM-Gateway to the Internet. I have activated the Routing and Remote Access Service (RRAS) on VM-Gateway, but unfortunately, I haven't been successful in configuring it to achieve the desired routing. I've also configured a User Defined Route (UDR) to redirect all traffic (0.0.0.0/0) to the IP address of VM-Gateway, and the VM-Gateway has been set up with functional Internet access. Despite these efforts, the traffic from the VM Windows does not seem to be passing through VM-Gateway to the Internet as intended. I have reviewed the configurations of VM-Gateway, routes, and Network Security Groups (NSGs), but I'm unable to pinpoint the issue. If anyone has experience with RRAS or insights into what might be causing issues in my configuration, I would greatly appreciate any assistance or advice you could provide. Thank you in advance for your valuable help!
@Philippe DA SILVA OLIVEIRA , Just checking in to see if you had a chance to see the below answer. To help the community find the right answers, please do mark the post which was helpful by clicking on Accept Answer.
And, if you have any further questions do let us know.
@Philippe DA SILVA OLIVEIRA , Just checking in to see if you had a chance to see the below answer. To help the community find the right answers, please do mark the post which was helpful by clicking on Accept Answer.
And, if you have any further questions do let us know.
Hi @Philippe DA SILVA OLIVEIRA,
did you select Enable IP forwarding on the VM-Gateway VM in the network settings?
(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)
Regards
Andreas Baumgarten
Hello, Thank you for your help. Yes, I selected IP forwarding on Azure and on Windows.
Regards,
Philippe
Hello @Philippe DA SILVA OLIVEIRA ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that you are trying to route traffic from your Azure VMs to Internet via a NVA machine in another subnet but even after adding UDR and enabling IP forwarding, the traffic is not going through.
You can refer the below tutorial with a similar setup to understand the requirements and how it works:
https://learn.microsoft.com/en-us/azure/virtual-network/tutorial-create-route-table-portal
Since you mentioned that the UDR is already in place and the VM-Gateway already has IP forwarding enabled, the only thing I could think of is that IP forwarding is not enabled in the VM's operating system.
As mentioned in the below doc:
While IP forwarding is an Azure setting, the VM must also run an application that's able to forward the traffic, such as a firewall, WAN optimization, or load balancing application.
You mentioned that you've activated the Routing and Remote Access Service (RRAS) on VM-Gateway, but I would request you to validate if the RRAS server has the IPv4 forwarding enabled.
Refer: https://learn.microsoft.com/en-us/archive/msdn-technet-forums/ce1d2eb2-248f-4130-9975-2f8882a8a4f9
https://forsenergy.com/en-us/rras/html/3fc0d556-8b4c-4dda-af53-f45efe87c91e.htm
Kindly let us know if the above helps or you need further assistance on this issue.
Please don’t forget to "Accept the answer" wherever the information provided helps you, this can be beneficial to other community members.
Hello, Thank you for your assistance. I had indeed enabled the IP forwarding on Windows as well. I solved my issue by adding a second network card to my VM. The configuration on the Routing and Remote Access Service was done automatically, and it now works. Regards, Philippe DA SILVA OLIVEIRA
@Philippe DA SILVA OLIVEIRA , thank you for the update. I'm glad that you were able to resolve your issue.