To follow on from my preview post about Working with Azure Virtual Network Preview, I have continued to work with the Azure Virtual Network Preview this post is about setting up the VPN with my new ADSL2 router (from this post New Internet Hardware for Home).
Currently the only supported hardware devices are from Cisco and Juniper, but using the following 2 blog posts as guides I was able to get the VPN working with my new Draytek 2830.
To start I followed the link above “Create a Virtual Network for Cross-Premises Connectivity”, to setup the Azure side of the virtual network.
Once the gateway was created, I opened the Draytek 2830 (Firmware Version 3.6.3) configuration tool, select VPN and Remote Access, selected LAN to LAN
Click Index 1. (or the next available if some already configured
In the Common Settings, Update the Profile Name to the name of your choice, my choice was “azure”, select the “Enable this profile” check box, select the VPN Dial-Out connection, click “Always on” check box
In the Dial-Out Settings, Click the radio button in front of “IPsec Tunnel”, Enter the Gateway IP Address from the Azure Portal
Click the IKE Pre-Shared Key from the Manage Key button in the Azure Portal
In the IPsec Security Method, select High (ESP) AES with Authentication, Click the Advanced Button, Select AES128_SHA1_G2 and AES128_SHA1
In the Dial-In Setting make sure “IPsec Tunnel is selected
Nothing is required in GRE over IPsec Settings
In the TCP/IP Network Settings, Enter the IP Address of your Internet Connection and the IP Address of the remote Gateway in Azure, Enter your Remote Network IP and Mask, Enter your local Network IP and Mask and Select “Route”
Click OK on the bottom of the configuration page, click Connection Management to see if the connection has been established, it may take a couple of minutes to initially establish, but once it is connected, this is what you should see
On the Azure Portal you should also see
These setting should work for any router that support the same settings.
Hope this helps anyone trying to configure an Azure Virtual Network VPN.