Allow native VPN S2S from Azure to AWS
Azure coexistence with AWS (and even GCP) is a very common scenario. Currently the only way to connect Azure and AWS is using a combination of Azure Virtual Network Gateway with a VM (Strongswan, OpenVPN, RRAS) deployed in AWS. We have no documentation around it, while Google provides VPN interoperability guidelines (here: https://cloud.google.com/compute/docs/vpn/interop-guides).
This is complicated to manage when you add things such as High Availability and all the required configuration. Also, these manual configurations are never the most optmized.
I understand we have a few different parameters vs. AWS and that's why Azure can't set up this S2S with the gateway. Why not? Can't Azure be a little more flexible and allow these connections with AWS? It's certainly a common scenario today and will remain a common scenario going forward.
Thanks for the suggestion – this will require the new Azure VPN gateway SKUs to add IKEv1 support. It’s under review but will be in the longer term roadmap. For the short term, please leverage virtual appliances from Azure Marketplace to facilitate this connectivity.
Chris Fowles commented
Azure to AWS VPNs are now possible.
Could Storsimple be used as a virtual appliance in this case ?