I recently setup our Site to Site VPN to Azure and am having an issue with pinging to Azure from OnPrem.
The tunnel shows connected and I can ping my on Prem devices from Azure without issue.
I used this article to setup the connection: https://thetechl33t.com/2020/11/18/azure-site-to-site-vpn-with-palo-alto-firewall/
I setup the tunnel twice and the first time it worked fine but now not sure what I have done incorrectly.
Any assistance with this would be very much appreciated so feel free to let me know what I can do to assist getting this resolved.
The fact you can ping in one direction proves, as you say, that the VPN is working, but also the routing between those subnets. Since the initialisation of the traffic flow is only working in one direction suggests this may be a security policy issue.
Can you confirm that inter-zone policy between the VPN and 'inside' zone exists. Also check there is an equivalent NSG in Azure on the VNET is you have it implemented.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!