Azure VPN Overview

Azure VPN Overview

In this blog, we will share the information about Azure VPN Overview.

 

AZURE VPN FACTS

  • IPSEC/IKE (Internet Protocol SECurity / Internet Key Exchange) v1 or v2 – Azure VPN’s are compatible with these protocols. Specifically, we use this tunnel type protocol for site-to-site and vnet-to-net VPN’s.
  • Multi-site VPN – The Single azure virtual network can have separate VPN connections on multiple on-prem sites.
  • SSTP (Secure Socket Tunneling Protocol) – This tunneling protocol is used with Point-to-site VPN.
  • V-NET Peering – We can take 2 vnets in the same region and put them together as one logical container. Peering does not require VPN connection.
  • Network ID’s – Need to design the network IP addressing carefully to avoid overlapping scenario.

 

VNET-TO-VNET VPN

 

Azure VPN Overview

 

  • In the above example, we can have the virtual networks in different regions like South India, Central US & UK West.
  • We are creating cross region secure tunnel will deploy Azure VPN gateway for each virtual network.

 

POINT-TO-SITE VPN

  • Point-to-Site VPN is one of many relationships.
  • It like accessing the company network from our laptop through VPN client.
  • If we log off or shut down our laptop (or) workstation it loses the connection.
  • The VPN client in the laptop establishes SSTP VPN tunnel directly with the company network.

 

SITE-TO-SITE VPN

  • Site-to-Site VPN is the many-to-many relationship.
  • From the on-premises location, we can use the hardware VPN (or) windows RRAS (Routing and Remote Access Service) to make a connection to Azure VPN.
  • In other words, it used to connect two networks and keep the communication all the time.

 

AZURE VPN GATEWAY TYPES

  • There are two types of VPN Gateway are available. They are Policy-based and Route based.
  • Policy-based – It uses the static routing also it’s not usable with azure primary VPN types like S2S (Site-to-Site), P2S (Point-to-Site) and Vnet-to-Vnet VPNs. It’s mainly used for backward compatibility with Azure V1.
  • Route based – It uses the dynamic routing protocols. This type is suggested by Microsoft for S2S, P2S and Vnet-to-Vnet VPNs.

 

VPN GATEWAY SKUs

  • We need to decide the type of SKUs (Stock Keeping Unit) that want to use for VPN gateway.
  • There are four types of SUs are available in the drop-down list. They are VpnGw1, VpnGw2, VpnGw3, and Basic.
  • VpnGw1, VpnGw2, VpnGw3 are supported for Resource Manager Deployment model only.

 

EXPRESSROUTE

  • ExpressRoute is a great fit for businesses that have the high-speed connection to Azure that bypasses the public internet.
  • The underlying it uses MPLS (Multi-Protocol Label Switching) WAN cloud. MPLS is a long-standing WAN technology.
  • The port speed offered by expressroute from 50 Mbps to 10 Gbps.

 

Thanks for reading this blog. We hope it was useful for you to learn about the basic concepts of Azure VPN Gateway.



Author: Loges
Logeswaran holds Microsoft certified engineer & solution architect certifications with over 11+ years of experience in the fields of hosting technologies and IMS/Cloud consulting. At AssistanZ, Logeswaran spearheads the strategic planning and execution of the company’s Microsoft based core technologies to Enterprise clients.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.