Configuring-Azure-Point-to-site-virtual-private-network-VPN-

In this project, I configured a point-to-site VPN connection for client devices to connect to an existing Azure virtual network I created named vnet2.

Environments Used

• Azure Portal
• Powershell

Project walk-through:

I started this project by creating the virtual network gateway. I then to the Azure portal and started the creation of a virtual network gateway:



I filled in all the required fields as seen in the image below, making sure I named the gateway P2S-GW and selected an existing virtual network named vnet2 as well as disabled active-active mode as it wouldn’t be needed for this project:



I then waited for the review and creation of P2S-GW:



Once the deployment was complete I started with generating a self-signed root certificate named P2SRootCert using Powershell ISE:



and then I generated the VPN Client Certificate Name “P2SchlidCert”, using PowerShell ISE:



I then ran the certmgr command in Powershell to open the manage computer certificate settings window and verified the creation of the certificates:



I then started exporting the root certificate by right-clicking it, selecting all tasks, then selecting export which opened the following prompts:



I then followed the prompts keeping the default selected:



and then selected base 64 encoded X.509 (.CER):



I named it Point to Site Root Cert and continued following the prompts selecting next, finish and ok:



I then went to the folder that I saved the cert in and opened it with notepad, then copied the text between BEGIN CERTIFICATE and END CERTIFICATE:



Once I copied the text I went back to the portal. I went to the virtual network gateway then under point-to-site configuration and clicked configure now:



and added an address pool of 172.16.31.0/24, selected IKEv2 and SSTP for tunnelling type so that both Windows and Mac devices can connect via the gateway:



I then pasted the text I copied from my Root Certificate (P2SRootCert) in the “Public certificate data” field and named it P2SRootCert:



I then downloaded the VPN client:



Once downloaded I went to the zip file and extracted the folder, so that I could install the VPN Client for vnet2 on my local file to test if it worked:



I selected Windows amd64 because that is what my local system runs, then selected VpnClientSetupAmd64:



I then selected “More info” then “run anyways”:



then yes:



On my local computer, I went to the search bar, typed in “VPN settings” and then selected it:



I then select vnet2 then “connect” on vnet2:



Then followed the prompt and selected continue:



I successfully connected to vnet2 from my local device which was the goal of this project: