question

JavierM-2507 avatar image
0 Votes"
JavierM-2507 asked GitaraniSharmaMSFT-4262 edited

Change sub net on meraki FW from 192.168.28.0/24 to 192.168.28.0/23 Cant ping azure desktops after 192.168.29.0+

Hi Y'all so i changed My local lan subnet scope to allow more host to the network. Change sub net on meraki FW from 192.168.28.0/24 to 192.168.28.0/23 Cant ping azure desktops after 192.168.29.0+

Is it something in the Azure portal i need to change. usually i can figure out things like this but i'm stuck. mostly because the UI for Azure is not the greatest.

azure-virtual-networkazure-vpn-gateway
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

GitaraniSharmaMSFT-4262 avatar image
1 Vote"
GitaraniSharmaMSFT-4262 answered GitaraniSharmaMSFT-4262 edited

Hello @JavierM-2507 ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

As mentioned by @TchimwaSougang-3249 , if you have updated your on-premise subnet address from 192.168.28.0/24 to 192.168.28.0/23 in your on-premise VPN/Firewall device, then you need to update this new address range 192.168.28.0/23 in your Azure local network gateway in Azure portal, then reset your connection and try again.

To modify IP address prefixes/add additional address prefixes:
- On the Local Network Gateway resource, in the Settings section, select Configuration.
- Add the IP address space in the Add additional address range box.
- Select Save to save your settings.

Refer : https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-modify-local-network-gateway-portal
https://docs.microsoft.com/en-us/azure/vpn-gateway/reset-gateway#reset-a-connection

Regards,
Gita

· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

When i Look in the "local network gateway resource" i don't see any other settings applied. I get "No local network gateways to display" This was setup by an MSP we previously terminated contract from.

There's are the current Resources we have.

206301-image.png


0 Votes 0 ·
image.png (296.8 KiB)

Hello @JavierM-2507 ,

Thank you for the update.

In this case, we would need to find out how the VPN connection was setup.
If there is no local network gateway, that means the VPN connection between Azure and your on-premise was not setup with an Azure VPN gateway.
There could be some software firewall/NVA on Azure end establishing this IPsec connection.

Once you find out how this IPsec connection is configured, you need to make changes on the Azure end to include the new on-premise address space.

From the table you shared, I would request you to check the below VM:

206238-image.png

Regards,
Gita


1 Vote 1 ·
image.png (7.4 KiB)
JavierM-2507 avatar image JavierM-2507 GitaraniSharmaMSFT-4262 ·

Thank you, This info helped me out to to figure out where to change the settings.

object-group network MERAKKI
network-object 192.168.20.0 255.255.254.0
network-object 192.168.22.0 255.255.254.0
network-object 192.168.24.0 255.255.255.0
network-object 192.168.25.0 255.255.255.0
network-object 192.168.26.0 255.255.254.0
network-object 192.168.254.0 255.255.255.0
network-object 192.168.28.0 255.255.254.0


it was linux based F/W controlling the Ip sec

1 Vote 1 ·
Show more comments
ricardosolisvillegas-4678 avatar image
0 Votes"
ricardosolisvillegas-4678 answered ricardosolisvillegas-4678 commented

Hello @JavierM-2507

Thank you for posting here.

Based on your problem description, I might think of checking the following settings:

-Network security group
-Route table(System Routes/UserDefineRoutes)
-DHCP/Static IP allocation on the NIC interfaces
-Gateway IP allocation

Looking forward to hear from you.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you Will look at the items you mention.

0 Votes 0 ·

Hi @JavierM-2507

I hope you are doing fine.

Your welcome and please keep us posted on this one : )

Cheers

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

0 Votes 0 ·
TchimwaSougang-3249 avatar image
0 Votes"
TchimwaSougang-3249 answered JavierM-2507 commented

@JavierM-2507 Thank you for your question. I assume that you are talking about your on-premises LAN network when you say, "Local Lan subnet". If it is the case, make sure you update the local network Gateway on Azure with the new address range 192.168.28.0/23, then reset your connection and try again.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

When i Look in the "local network gateway resource" i don't see any other settings applied. I get "No local network gateways to display" This was setup by an MSP we previously terminated contract from.

There's are the current Resources we have.

206301-image.png


0 Votes 0 ·