I have deployed a VPN Gateway S2S connection & connection showing connected.
NSGs are open w/ the appropriate ports.
I am able to reach from onprem to Azure (ping / rdp / etc)
I am not able to reach from Azure to OnPrem.
Traceroute from vm shows that I’m being pointed to 0.0.0.0, (despite having manually created routing tables set to the onprem network).
I am currently losing my mind trying to figure this out, any assistance would be appreciated.
Did you have the address space to the virtual network gateway? When you created that VPN connection and identified the subnets in your on prem environment, Azure auto creates routes as system defaults. Have you validated the data packets arriving at the FW?
You should not need any manual routes for the Azure=> onprem to work. Only needed if you want to force the default route via onprem. Since the other direction works, return packets are routed correctly. Perhaps check your onprem firewall policies and packet capture on the onprem firewall.
Make sure route propagation isn’t disabled on Ur vnet…you can also over ride this by adding a UDR to the subnet and force the VM to point to the gateway for Ur range on prem
This was actually the case.
Thank you for the assist / encouragement.