Setting Azure Point to Site VPN

A Point-to-Site (P2S) configuration is a secure connection from an individual client
computer to a virtual network. P2S is a VPN connection over SSTP (Secure Socket Tunneling
Protocol).

In this example i connected my home Windows 10 lap-top to Azure infrastructure via VPN (not via AzurePublic IP)

Creating Azure Virtual Network

New-Virtual Network

Creating Azure Virtual Network Gateway

Virtual Network Gateway will be used from outside connection into Azure (as edge router/firewall at Azure Network)

SKU-Pricing category

Create public IP

And gateway

Click create

While gateway is being created, create certificates on Windows 10 machine

Download ADK (needed for tool makecert.exe)

After ADK is installed go to tool’s path

cd 'C:\Program Files (x86)\Windows Kits\10\bin\10.0.16299.0\x64'
::Create root certificate
\.makecert.exe -sky exchange -r -n "CN=LabRootCA1" -pe -a sha1 -len 2048 -ss My "LabRootCA"
::Create client certificate
\.makecert.exe -n "CN=VPNtoAzure" -pe -sky exchange -m 96 -ss My -in "LabRootCA1" -is my -a sha1

 

Export root certificate

Right click Root CA-All tasks-Export

 

 

 

 

Open certificate with notepad

 

 

Go to Azure gateway-Point-to-site-configuration

 

Specify pool and paste key from notepad, click save and download VPN client

 

 

 

 

 

 

 

I created Azure VM

 

 

 

From my Lap-top i used private IP (10.0.0.4) to connect to Azure VM

 

Advertisement