![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJC%3C/text%3E%3C/svg%3E)
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,385 questions
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to know if there are any alternatives to make the opened ports of Azure VPN Gateway inaccessible.
- Unfortunately, this is not feasible.
- The ports are in listening state so that the platform can access it via these ports. If we were to block it using Azure Firewall or NSG, that would not help the case.
- The documents and reference Q&A threads shared by you are correct.
This is by design of the product and we cannot override this.
Also, see : Gateway subnet considerations
Thanks,
Kapil
Please Accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer.