Azure VPN up, but only one way
-
I recently switched from a SonicWall to a Netgate. The Azure VPN was working fine on the SonicWall, allowing both directions.
On the Netgate I set it up using the same IP and key info and it's up and running. I can access my Azure servers from my LAN with no problem.
But, my Azure Windows servers need to access some devices on my LAN (like printers and a NAS) every now and again. This is not working. I can't even ping anything on my LAN from the Azure Windows servers.
The child SA entry shows the correct local and remote subnets and is connected.
I shouldn't need to add any Rules or make any NAT changes, right? The IPsec VPN takes care of all of that?
-
Well, for anyone else that may run into this... the problem was that a Firewall Rule is needed. I was wrong to think that the VPN creation took care of that.
Firewall Rules, IPsec is where it had to be created.