Hi all,
I have been struggling to accomplish a scenario where a server i Azure should access the internet through the ipsec connection to my sophos xg box on-prem.
I have been looking forward to v17 since it introduces IKEv2, and there by the posibility of a RouteBased Virtual Network Gateway in Azure.
The thing is, the IPsec connection is working perfectly. Traffic from an onprem client to an Azure server works, and traffic from an Azure server to a onprem client works.
I also configured a route table for the Virtual Network Gateway in azure to force all traffic(including internet traffic 0.0.0.0/0).
When i run a tracert for 8.8.8.8 from an azure server, i hops through the Azure Virtual Network Gateway, and my onprem sophos, but the the trace times out.
Azure network has 172.16.0.0/24 network, and onprem network is 192.168.50.0/24
I have a firewall configured for allowing VPN zone, any source to WAN, any destination.
To me it seems like the outgoing request goes through, but the return traffic is not directed through the ipsec connection and back to the server in Azure.
Any help would be much appreciated.
