Should I use IP addresses from the Gateway Subnet in an Azure VPN?

azure vpn azure-virtual-network azure-vpn
TrevorJ picture TrevorJ · Mar 10, 2015 · Viewed 11.7k times · Source

I am configuring an Azure VPN with site-to-site connectivity to a large enterprise customer. I have configured the following address space:Address space config

Now the customer has asked "Could you please send us traffic with one ip address, instead of range (192.168.2.0/27)"

I will only have one VM on the VPN so I can pick any IP in the range, but should I pick one from the Subnet-1 range or the Gateway range? What will the customer see our traffic as coming from?

Edit Once I answered my own question I realised how poor the title was so I've edited it.

Answer

TrevorJ picture TrevorJ · Mar 11, 2015

The answer is no. Do not use the gateway subnet.

I eventually found exactly what I required on this Microsoft page. Specifically:

And don't deploy VMs or anything else to the gateway subnet.

and

Can I deploy Virtual Machines or role instances to my gateway subnet?

No.

Related questions

Site-to-site VPN vs point-to-site VPN

I have a scenario where I have a Windows VM in windows Azure that needs to connect to an external customer network (and connect to a database that is not in Azure). This traffic is uni-directional in that it is …

Read More
Windows Azure VPN - How to Install/Use Azure Connect

I'm feeling like an idiot here. I've setup a simple Windows virtual machine in Azure that needs to be accessed via VPN by 12 remote users (who all work from home) to simply access a shared drive. I thought this would …

Read More
How to get the azure account tenant Id?

My question is: Is it possible to get the azure active directory tenant id without using powershell command? I found this two blogs and with this help, I'm already able to get the tenant ID and subscriptions ID from powershell. …

Read More