Hello readers, I’ll be covering about the details of How to create a site-to-site VPN connection in the Azure portal .This guide presupposes that you have a fundamental knowledge of cloud .
Introduction
Microsoft’s public cloud platform is called Azure. Platform as a Service (PaaS), Infrastructure as a Service (IaaS), and Managed Database Service capabilities are just a few of the many services that Azure provides.
prerequisite
- An Azure subscription-enabled account. Create one for free if you don’t already have one.
- create a resource group
- create a Virtual network and subnet
Creating vitual network gateway
Similar to how you set up and connect to a remote branch office, Azure VPN Gateway uses Site-to-Site VPNs to link your on-premises networks to Azure.
In Search bar, type virtual network gateway and select the create option as shown in the below image of virtual network gateway page.
1. you need to choose the subscription you want to use from the dropdown
2. specify the name of your vitual network gateway (eg. Devops1_net_gateway )
3. select the region of your choice
4. select gateway type: it can be vpn or express route type, SKU, Generation , Virtual network, Gateway subnet address range
5. public IP address: Create a new Public IP address name Devops1_net_gateway-publicip .
6. Choose the virtual network to which you want to add this gateway from the dropdown menu.
Gateway subnet : The virtual network IP address range that you choose when configuring your virtual network includes the gateway subnet. It includes the IP addresses used by the resources and services of the virtual network gateway. Azure cannot install the gateway resources unless the subnet is titled “GatewaySubnet”.
To perform validation, choose Review + create. After validation is successful, choose Create to set up the VPN gateway.
Creating local network gateway
The VPN gateway needs to know who you wish to connect to and what peer IP address ranges are using the local network gateway.
In Search bar, type local network gateway and select the create option as shown in the below image of local network gateway page.
- Specify a name for your local network gateway object.
- IP address :This public IP address belongs to the VPN device that you want the Azure VPN gateway to connect to.i have given the ip of my gcp vpn gatway as i am trying to make connection between azure and gcp .
- The address spaces for the network that this local network represents are referred to as address spaces. Multiple address space ranges can be added. Make sure the ranges you provide here do not cross over with the ranges of any other networks you intend to connect to.here i have specified the ip of gcp subnet where i am making connection.
Creating connection
In Search bar, type connections and select the create option as shown in the below image of virtual network gateway page.
- specify the name of the connection.
- select the region.
- create a site-to-site VPN connection between azure and gcp by selecting connection type.(Your on-premises network is linked to an Azure virtual network via an IPsec/IKE (IKEv1 or IKEv2) VPN tunnel using a site-to-site VPN gateway connection.)
- Shared key: For this i am using secret key of gcp vpn tunnel. But, you can use whatever is compatible with your VPN hardware. The values on both sides of the link must match; this is crucial.
finally verify the connection of your vpn by checking the status .as we can see here the status is connected that means we have successfully connected with across cloud network.
Reference:
https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal
https://www.testpreptraining.com/tutorial/troubleshooting-an-azure-site-to-site-vpn-connection/
https://blog.knoldus.com/azure-monitor-collect-logs-and-metrics-from-on-premises/
In Conclusion:
The blog explained How to create a site-to-site VPN connection in the Azure portal.I hope you enjoyed this practical instruction. Motivate yourself to more VPN connection in the Azure portal, and utilize them while looking up more examples on Google.