I'm trying to configure VPN setup in the Azure portal which is connecting an On-Premises server from Service Fabric cluster. I have followed the below article to achieve the task.
Create a Site-to-Site connection in the Azure portal
On-Premises VPN Peering IP: 106.62.121.242 (Sample IP)
Azure VPN Peering IP: 105.50.59.124 (Sample IP)
On-Premises - Hosts Using VPN (Encryption Domain): 106.62.127.196 (Sample IP)
Azure - Hosts Using VPN (Service Fabric Load balancer IP): 62.166.19.229 (Sample IP)
After I have configured the pre-shared key I can see that the connection has been established successfully. But the traffic is not going from Azure Service Fabric VM. I'm getting the following error when I tried to check the traffic from one of the Service Fabric VM.
PS C:> Test-NetConnection -Port 443 devapi.example.com
WARNING: TCP connect to devapi.example.com:443 failed
WARNING: Ping to devapi.example.com failed -- Status: TimedOut
ComputerName : devapi.example.com
RemoteAddress : 106.62.127.196 (sample IP)
RemotePort : 443
InterfaceAlias : Ethernet 2
SourceAddress : 10.0.0.4
PingSucceeded : False
PingReplyDetails (RTT) : 0 ms
TcpTestSucceeded : False
I have been told that the SourceAddress should be the Service Fabric Load balancer IP to send and receive traffic. Please help.
Azure - Hosts Using VPN (Service Fabric Load balancer IP): 62.166.19.229 (Sample IP)
This is wrong. You should configure Azure Virtual Network ip range, such as 10.0.0.0/16. The value is not Azure Load Balancer Public IP address.
Note: You need change it on Azure Gateway and your local VPN gateway.