Azure point to site config

Nesperas 1 Reputation point
2022-04-21T09:54:43.24+00:00

Hi Guys,

I have this scenario and I hope someone can help me out,

I have an azure site to site vpn connection and a couple vms on that vnet I have now configured an azure point to site on that Virtual network gateway and downloaded the Azure VPN client, I can get to VMs and once inside I can access my on prem resources but from my home pc I can't get to my on prem recourses or ping my on prem machines, hope that makes sense.

Thanks

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,442 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. GitaraniSharma-MSFT 49,356 Reputation points Microsoft Employee
    2022-04-21T10:29:07.697+00:00

    Hello @Nesperas ,

    Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

    I understand that you have an existing site to site VPN connection from your on-premises to Azure and you added a point to site VPN configuration on it and are able to access the Azure VMs from the VPN client and from within the VMs, you are able to reach your on-prem resources (which is connected via S2S VPN) but are unable to connect to your on-premises resources from the P2S VPN client directly.

    In order for you to be able to access your on-prem network (which is connected to Azure VPN by site to site connection) from your Point to site VPN client, your Site-to-Site VPN connection should be running BGP.

    If your site to site connection between Azure and On-prem uses BGP, then you can just manually add the routes for your on-prem network to the Windows P2S client and will be able to access the on-prem network from your point to site connection/client. For non-windows clients, you do not need to add the manual routes as BGP is enough for the routes to be propagated.

    To manually add the On-prem network route, you can browse to %AppData%\Microsoft\Network\Connections\Cm*yourGuid*\routes.txt (C:\Users\userID\AppData\Roaming\Microsoft\Network\Connections\Cm*VPNGuid*\routes.txt) in your client machine and add the route in this text file.

    Please refer : https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-point-to-site-routing#vnetbranchbgp

    Kindly let us know if the above helps or you need further assistance on this issue.

    ----------------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments