Hello,
Since Azure VPN defaults to route-based VPN where it uses VTI feature but mikrotic dont support it.
How do you configure site to site VPN connection to onpremise site? Does it require combination of BGP and/or GRE Tunnel?
For instance:
Local Range: 192.168.88.0/24
Azure Range: 10.0.0.0/23
Can you also recommend the best setup ? For instance, when creating a connection, there is an option to define custom “IPsec/ IKE policy” and/or use Policy based traffic selector.
Thanks,
Mark
Hi, there are plenty of guides online. Here are some examples:
Youtube:
Microsoft:
@royalknight have you found any success? I’ve tried multiple guides to no avail.
I just finished setting up a route based Azure VPN Gateway (SKU VpnGw2AZ Gateway type VPN - VPN type Route-based) with a CCR1016 on v6.49.10. It is now working perfectly but there were many bad guides or incomplete guides.
What issues are you having, and can you post cfg? (remove sensitive)
we have site2site kind of working, but there are issues, I’ve created a separate thread regarding it: http://forum.mikrotik.com/t/site2site-resources-reachable-via-curl-but-not-browser/175449/1
edit: I second that there were a lot of incomplete/poor guides, none in the first response was particularly helpful, so to give credit we had most success with this one so far: https://cloudtips.nl/configuring-azure-vpn-s2s-on-mikrotik-hex-s-0ab5ed0bea6e