Share via

With Azure VPN Gateways, I need a few clarifications

Marouf Ali 270 Reputation points
2024-10-10T12:30:36.7066667+00:00

Hello everyone,

Referring to the material about Azure VPN Gateways, it says:

User's image

Here what does it mean "you assign a unique public IP address to each instance.." Is it the instance of the VM or the instance of the VPN Gateway?

Also, when it says, that "you can create separate tunnels from on-premises device to each IP address.." - does that mean each ip address of the VM? or each ip address of the subnet?

Finally for ExpressRoute Failover,

User's image We saw in the previous module, that ExpressRoute is supposed to bypass internet, but then, as per failover mentions, if it uses internet, it does it using VPN gateway, but is there an encryption of the data being sent through the gateway, because then wouldn't high availability scenarios with risk, be considered unsafe by the client?

Kindly, please clarify. As I am a beginner, I am asking this, just for my understanding.

Best regards

Marouf

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,517 questions
Accepted answer
  1. Andreas Baumgarten 111.4K Reputation points MVP
    2024-10-10T13:47:58.24+00:00

    Hi @Marouf Ali ,

    regarding "Here what does it mean "you assign a unique public IP address to each instance.." Is it the instance of the VM or the instance of the VPN Gateway?":

    You will assign a unique public IP Address to each instance of the VPN Gateway.

    regarding "Also, when it says, that "you can create separate tunnels from on-premises device to each IP address.." - does that mean each ip address of the VM? or each ip address of the subnet?":

    You will connect you on-premises VPN device with each public IP address of the VPN Gateway instances.

    In the described scenario "connecting an on-premises environment with Azure networks" is no Azure VM involved. In Azure an Azure VPN Gateway will be used.

    regading "if it uses internet, it does it using VPN gateway, but is there an encryption of the data being sent through the gateway, because then wouldn't high availability scenarios with risk, be considered unsafe by the client?"

    The data sent and received via an VPN connection (between on-premises VPN device and Azure VPN Gateway) will always be encrypted. In my opinion a VPN connection is a safe way for communication.

    Please take a look here for more information: About cryptographic requirements and Azure VPN gateways

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards

    Andreas Baumgarten

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.