Quantcast
Channel: Azure Virtual Machines forum
Viewing all articles
Browse latest Browse all 12545

One Way Traffic IPSEC VPN

$
0
0

Hi,

We are attempting to setup an ADFS box in Azure to facilitate our SSO for Office 365. This box is going to have another DC along side it in Azure so that we don't have any reliance on the internet connection at head office.

We have the VM running, and have setup a site to site IPSEC VPN from Azure back to our Juniper SRX. The tunnel has come up and everything looks ok. We do have some one way traffic issues though.

Eg;

Azure --> Onprem -This works no problems. A ping for example responds and everything is fine. I can RDP from Azure to Onprem server, no problems. SMB, RPC the whole lot.

Onprem --> Azure-Nothing works. No traffic is passed to the VM whatsoever. I have disabled Windows Firewall in the VM completely and still nothing. A wireshark trace for ICMP doesn't even show a packet reaching the VM, it simply doesn't get there.

I've had the networking guys confirm that the SRX is encrypting traffic and trying to send it across the IPSEC VPN (policy based VPN).

I have tried to add endpoints via the Azure console, but if I understand correctly this is for traffic from the WAN, not the VPN.

Azure is currently in a free trial if that makes any difference.

Anybody able to suggest anything we can try?

Thanks.

Will.


Viewing all articles
Browse latest Browse all 12545

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>