0

This question seems to have been asked before but I cannot get this to work no matter what I try. I have a Windows Server 2019 VM in Azure running RRAS. I have configured the server using SSTP and can successfully establish a tunnel between the client and RRAS server. I can ping from the client to the RRAS server, access shares, etc. on the RRAS server but not beyond. I want to force tunnel all traffic through the VPN server.

Network packet captures show the client pinging and trying to connect to internet sites, but no response ever comes back from any network traffic. I have run traces on the client and server, and with Network Watcher - all show the same thing. I am using default outbound NSG rules that allow any traffic to the internet. The RRAS server itself has no problem pinging or accessing internet sites, but clients cannot access or ping the same sites. Something is blocking the outbound traffic it seems.

Anyone have any ideas? Thanks in advance.

Andrew Schulman
  • 8,811
  • 21
  • 32
  • 47
Ken
  • 1

1 Answers1

0

You can't do that in Azure.

Azure networking is quite peculiar, and amongst other things it doesn't allow you to simply run a firewall or router or VPN server in a VM and use it; you need to either use Azure's own Virtual Network Gateway (which can be used for both site-to-site and point-to-site connections) or deploy an Azure-specific virtual appliance to use as a firewall; there are several available from various vendors. But beware, this requires additional (and quite complex) configuration.

Massimo
  • 70,200
  • 57
  • 200
  • 323