VPN site to site Azure / drop subnet connection

Question

Hi 
 i have an IPsec VPN from XG to Azure (only LAN subnet) who is working fine, 
 since i added the User SSL vpn subnet to allow ssl vpn user to access to Azure (yet I have 2 subnet in my site to site setup Azure LAN + 10.81.234.0/24) the connection of the second subnet (10.81.234.0/24) drops intermittently. 
 Is this due to a timeout azure side for no trafic for this subnet ? 
 
 Thanks

Scott_D_L · Answer

Yes - I see this myself. I've got Azure Site to Site setup on a test network out in Azure. One subnet for a couple test VM's and another subnet for some Web Apps. If I take down the Test VM's in Azure for any period of time that ipsec SA will go down while the SA that handles the webapps (that continually communicate back to HQ )will stay up. When I bring those test VM's back up , the SA comes up automatically. This is normal from what I've seen.

VPN site to site Azure / drop subnet connection

Top Replies