How can we improve Azure Networking?

Allow native VPN S2S from Azure to AWS

Azure coexistence with AWS (and even GCP) is a very common scenario. Currently the only way to connect Azure and AWS is using a combination of Azure Virtual Network Gateway with a VM (Strongswan, OpenVPN, RRAS) deployed in AWS. We have no documentation around it, while Google provides VPN interoperability guidelines (here: https://cloud.google.com/compute/docs/vpn/interop-guides).

This is complicated to manage when you add things such as High Availability and all the required configuration. Also, these manual configurations are never the most optmized.

I understand we have a few different parameters vs. AWS and that's why Azure can't set up this S2S with the gateway. Why not? Can't Azure be a little more flexible and allow these connections with AWS? It's certainly a common scenario today and will remain a common scenario going forward.

127 votes
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
You have left! (?) (thinking…)
Henrique shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

Thanks for the suggestion – this will require the new Azure VPN gateway SKUs to add IKEv1 support. It’s under review but will be in the longer term roadmap. For the short term, please leverage virtual appliances from Azure Marketplace to facilitate this connectivity.

Thanks,
Yushun [MSFT]

2 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base