Problem with VPN site-to-site, app container in a subnet in a vnet peering

Mario E. Esteves Mariño 20 Reputation points
2024-09-19T15:47:03.1433333+00:00

Network-Dev

I have a small problem with the VPN tunnel that was configured with the Virtual Network Gateway resource.

I have 3 resource groups, the GLOBAL resource group is where the Virtual Network Gateway is hosted and it is linked to the 2 resource groups RG-A and RG-B in Hub-Spoke mode.

The tunnel allows me to connect from my on-premise site and I access the elements in the RG-GLOBAL and the resource groups RG-A and RG-B that are within the DEFAULT subnet.

I created a VM in each resource group to confirm connectivity in each subnet, but note that I only access the resources if they are within the default subnet. If they belong to another subnet, the resource becomes inaccessible.

For example, my App Containers are in the infrastructure subnet. And I cannot access them from my on-premise site; but if I put them in the default subnet, access is possible.

What do I need to configure so that, without changing the subnet, the resources are accessible from my on-premise site?

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,535 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,450 questions
Azure Container Apps
Azure Container Apps
An Azure service that provides a general-purpose, serverless container platform.
422 questions
{count} votes

Accepted answer
  1. ChaitanyaNaykodi-MSFT 26,106 Reputation points Microsoft Employee
    2024-09-19T21:49:20.4533333+00:00

    @Mario E. Esteves Mariño

    Based on your question above as only the default subnet on hub and spoke Vnets is reachable from on-prem.

    Thanks

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.