Azure Point-to-Site VPN forced tunneling with Azure VM Firewall.

Blackbird IT 1 Reputation point
2021-11-11T05:29:42.727+00:00

Hi,

Currently have a bunch of users connecting to Azure VPN Gateway via the Azure VPN Client.
I am working on a project to centralize gateways for users.

I have a router setup in Azure Virtual Machines and want to force P2S clients to use this as a default gateway to comply with ISO standards.

From what I am reading in my searches forced tunneling is not supported on the VPN gateway but I would like to know if i use my own router can this be achieved?

Thanks

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,803 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. msrini-MSFT 9,291 Reputation points Microsoft Employee
    2021-11-11T09:38:37.43+00:00

    @Blackbird IT ,

    Yes you can go ahead and deploy any Network Virtual Appliance (Router) which has OpenVPN capability to set up Client connecting directly to your router in Azure where you can configure to advertise 0.0.0.0/0 route to your clients.

    You don't need VPN gateway or any Azure managed service to do this setup. Azure has a product called vWAN which you can leverage to perform Force tunneling of clients traffic to Internet to P2S gateway and also to Azure Firewall, You can pick any of the above solution to achieve your setup.

    Regards,
    Karthik Srinivas


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.