Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Azure Pfsense + Application Gateway + vNet Peering

    General pfSense Questions
    1
    2
    186
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      JuniorNetworking last edited by JuniorNetworking

      I am stumped. Setup Hub and Spoke

      192.168.1.0/0/24 - Pfsense (Hub)
      192.168.2.0/ 26 - Application Gateway (Hub)
      172.30.3.0/24 - Webserver (Spoke vNet Peered)

      vNet Peer Config: Configuration
      Configure virtual network access settings
      Allow virtual network access from Hub to Spoke
      Enabled

      Pfsense NAT
      192.168.1.5 (With PiP) forward to 192.168.2.5 (AG Private Front End IP)

      Intended traffic flow: pfsense -> app gateway -> webserver

      Current Route Tables:
      Dest. 0.0.0.0/0 Route Internet Subnet Association: 192.168.1.0/24
      Dest. 192.168.1.0/24 Route Virtual Network

      Why can I not access webserver site on port 80?

      NSG Allow all on port 80
      Pfsense Allow all on port 80
      App Gateway Listener on Port 80 to server backend pool private ip 172.30.3.4 (Works with no Pfsense and Route Tables when using AG Public Front End IP)

      I tried following this reference guide but it doesn't seem to work:
      https://docs.microsoft.com/en-us/azure/architecture/example-scenario/gateway/firewall-application-gateway#hub-and-spoke-topology

      Has anyone else tried creating something similar?

      1 Reply Last reply Reply Quote 0
      • J
        JuniorNetworking last edited by

        Turns out global vNet peering on the LB function of Application Gateways is not supported. This is a Azure Application Gateway limitation and not related to Pfsense: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-troubleshoot-peering-issues. Posting this on 10/5/2020 if anyone else runs into this issue, I hope this helps

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy