Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,778 questions
P2S routing issue
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 22%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
FunMum
120
Reputation points
Hi, I am facing an issue.
I have 2 networks. VNET1 (10.1.0.0/16) is hosting the VPN Gateway. VNET2 (10.2.0.0/16) has a virtual machine(10.2.0.10) that the VPN user is trying to reach (Windows Client). VNET2 is a vnet in a different subscription than VNET1 but in the same tenant.
I added VNET2 to the "additional routes to advertise' in the point to site settings and redownloaded the configuration file.
I cannot reach the vm 10.2.0.10 when I cannot to the VPN client. I am not sure what I am missing or if I hit a limitation with peering across subscriptions with P2S. Thank you!
VNET1 to VNET2 Peer Settings (good connection status)
Allow 'vnet1' to access 'vnet2' (enabled)
Allow 'vnet1' to receive forwarded traffic from 'vnet1'(enabled)
Allow gateway or route server in 'vnet1' to forward traffic to 'vnet' (enabled)
Enable 'vnet1'to use 'vnet2' remote gateway or route server (disabled)
VNET2 to VNET Peer Settings (good connection status)
Allow 'vnet2' to access 'vnet1'(enabled)
Allow 'vnet2' to receive forwarded traffic from 'vnet1'(enabled)
Allow gateway or route server in 'vnet2' to forward traffic to 'vnet1'(disabled)
Enable 'vnet2' to use 'vnet1's' remote gateway or route server (enabled)
Azure VPN Gateway
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 15%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPB%3C/text%3E%3C/svg%3E)
Praveen Bandaru 4,755 Reputation points Microsoft External Staff Moderator2025-06-16T21:38:24.37+00:00 Hello FunMum
I understand that you are connecting to a virtual machine in a different virtual network through your Point-to-Site (P2S) VPN setup. Here are a few things to check.- Please check any NSG or UDR attached to the VM subnet.
- Verify if the Windows firewall is disabled or not.
- After making changes to the P2S configuration, make sure to redownload and apply the updated configuration file to the client. Although you mentioned you did this, it's worth verifying that the client has the latest configuration.
- Test the Psping and tracert from the VM to the client machine and share results with us.
- Check the connectivity from the HUB Vnet (Point-to-Site VPN gateway) to the client machine.
- If your configuration involves multiple paths, consider whether asymmetric routing might be causing problems. You may need to adjust the routing to ensure traffic returns through the correct path.
Check the below reference document for more understanding:
Hope the above answer helps! Please let us know do you have any further queries. Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
-
Praveen Bandaru 4,755 Reputation points Microsoft External Staff Moderator
2025-06-17T23:26:59.6433333+00:00 Hello FunMum
I just wanted to follow up and see if you had a chance to review my response to your question. Please let us know if it was helpful, and feel free to reach out if you have any further queries.
Hope the above answer helps! Please let us know do you have any further queries.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
-
Praveen Bandaru 4,755 Reputation points Microsoft External Staff Moderator
2025-06-18T19:10:44.08+00:00 Hello FunMum
I just wanted to follow up and see if you had a chance to review my response to your question. Please let us know if it was helpful, and feel free to reach out if you have any further queries.
Hope the above answer helps! Please let us know do you have any further queries.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 82%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVV%3C/text%3E%3C/svg%3E)
Venkat V 2,545 Reputation points Microsoft External Staff Moderator2025-06-19T06:09:10.7933333+00:00 Hello FunMum
I just wanted to follow up and see if you had a chance to review above response to your question. Please let us know if it was helpful, and feel free to reach out if you have any further queries.
Sign in to comment
Sign in to answer