Hello,
I have created a site-to-site VPN and the tunnel is coming up just fine. On the Azure side, I created a virtual network and used these values for the Address Space:
192.168.10.0/24
Subnet-1 192.168.10.0/27
Gateway 192.168.10.32/29
Now that the VPN came up (Phase1 and Phase2 are working great!) I can ping from my LAN to 192.168.10.0 and I get replies. I can see traffic flowing through the VPN tunnel. So far, so good.
I also have an Azure virtual machine. This VM is set up to use DHCP and has obtained an address by DHCP. My question is this: How do I configure things so that I can assign an address such as 192.168.10.10 to my virtual machine? Eventually I am going to want to do auto scaling, so maybe DHCP is the way to go so that Azure can create more VM's for me on the fly? I just don't understand how this is supposed to work in terms of the LAN setup on the Azure side. I have read every document that I can find (there are quite a few) but it still does not make sense to me how the firewall will know to route incoming requests for 192.168.10.X to my virtual machine. The virtual machine itself also cannot ping hosts on my local network, even though policies are set up to allow all traffic in both directions. So it seems my issue is trying to get a proper understanding of how the IPV4 mapping is done with regard to these virtual machines and the Azure firewall.
I look forward to hearing any thoughts you have. Thanks!