IPSec tunnel over ExpressRoute
We require confidentiality and integrity of our network links into Azure, and want to use ExpressRoute. Currently the Azure gateway ExpressRoute SKU does not support IPSec.
Can you please add IPSec support to ExpressRoute, or to the Azure gateway Expressroute SKU.
Ahmed Farag commented
Guys, this doesn't work for you:
Seif Allah Ben Amara commented
Any update about this request?
hi, we have this requirement as well. does anyone know if it is coming?
"Planned" for over a year now. Any updates on this Microsoft? My clients would pay the world for this as an ExpressRoute integrated feature.
Any ETA on this? Or at least reference architectures to achieve this scenario with virtual appliances?
The documentation here is a bit confusing - https://docs.microsoft.com/en-us/azure/expressroute/site-to-site-vpn-over-microsoft-peering
Our requirement is to establish S2S IPSec VPN between Azure cloud and a On-Premise Datacenter over Expressroute. We have to use virtual appliance for the requirement.
If we have deployed firewall in HA cluster mode, how will be the deployment model? Can someone share this info?
Routing for the IP subnet through firewall which is already advertised over expressroute?
Can someone provide the reference architecture for how you implemented IPSEC over Express Route?
I agree, we need native IPsec support in the ExpressRoute gateway and not just the VPN gateway for Internet.
AWS supported VPN over DirectConnect if you use public IPs for Direct Connect
Need same for ExpressRoute to meet requirement for data to be encrypted in transit and at rest
We are planning to use virtual appliances to meet this requirement, but would have preferred if the capability was provided by Azure.
Ganesh Srinivasan[MSFT] commented
We enable this scenario with our partners. We have helped customers use virtual appliances to solve the scenario needs. Have you explored the option of using a virtual appliance in the path?