Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)
-
Upload
shawn-ismail -
Category
Technology
-
view
23 -
download
2
Transcript of Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)
![Page 2: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/2.jpg)
Shawn Ismail Cloud Architect
@shawnismail [email protected]
https://www.linkedin.com/in/shawnismail
http://www.2tolead.comhttp://www.cloudranger.net
Azure Virtual Networks - Part 6Point-to-Site VPN
![Page 3: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/3.jpg)
Azure Virtual Networks - Part 6 – Point-to-Site VPN
Point-to-site VPN
User
User
User
User
User User User
Azure VNet
![Page 4: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/4.jpg)
Azure Virtual Networks - Part 6 – Point-to-Site VPN
• Individual client machines connect to Azure VNET with traditional VPN client • Utilizes SSTP (Secure Socket Tunnel Protocol)• Users certificate authentication between client computers and VNets• Individually configured; VPN client installed on client computer• 128 clients per VNet• Requires Dynamically Routed Gateway• Gateway bandwidth is 80 Mbps
![Page 5: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/5.jpg)
Azure Virtual Networks - Part 6 – Point-to-Site VPN
Sequence of steps top establish a point-to-site VPN1. Create a VNET with p-2-s connectivity enabled from Management Portal 2. Create a Network Gateway - From Management portal or PowerShell3. Create self-signed Root certificate4. Create self-signed client cert from Root certificate5. Export client certificate from the Certificate Store6. Upload root authentication certificate to Azure7. Install the client certificate on the client machine to authenticate to the VNET8. Install Client VPN package – Download from Azure Portal9. Establish VPN and verify connectivity
![Page 6: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/6.jpg)
Azure Virtual Networks - Part 6 – Point-to-Site VPN
Makecert
Create self-signed Root certificatemakecert -sky exchange -r -n "CN=rangerP2SRoot" -pe -a
sha1 -len 2048 -ss My .\rangerP2SRoot.cerCreate self-signed client cert from Root certificate
makecert –sky exchange-n "CN=rangerP2SClient" -pe -m 96 -ss My -in "rangerP2SRoot" -is My -a sha1
![Page 7: Microsoft Azure Training - [12] Azure Virtual Networks - Part 6 - Point-to-site VPN (Exam 70-533)](https://reader036.fdocuments.in/reader036/viewer/2022082815/55d150c0bb61ebff358b474f/html5/thumbnails/7.jpg)
Azure Virtual Networks - Part 6Point-to-Site VPN
Training Site: http://www.cloudranger.net/azure-training
YouTube: https://www.youtube.com/c/CloudrangerNetwork
Twitter : @shawnismail
Email : [email protected]
LinkedIn: https://www.linkedin.com/in/shawnismail
http://www.2tolead.comhttp://www.cloudranger.net