Setting up a POINT - TO - SITE VPN

Creating an Azure Point-to-Site VPN

The most common method for businesses to connect their on-premises networks to Azure Virtual Networks (vNets) is by utilizing a site-to-site VPN. However, if you need to connect from a remote location, such as your home, you can use the point-to-site approach. With this method, the endpoint and Azure virtual network are authenticated using certificates.

Step-By-Step: Creating an Azure Point-to-Site VPN

Please follow the steps:

1. Create a Resource Group

Name: RG-VNET-P2S

Location: Eastus

2. Create Virtual Networks & Subnets

Name: VNETP2S

Location: Eastus

Create Subnet:

Name: SUBNETP2S

Location: Eastus

3. Ctreate Gateway Subnet

4. Create Virtual Network Gateway

5 Create a self-sign root certificate & Client Certificate

Root certificate:

$cert = New-SelfSignedCertificate -Type Custom -KeySpec Signature `

-Subject "CN=REBELROOT" -KeyExportPolicy Exportable `

-HashAlgorithm sha256 -KeyLength 2048 `

-CertStoreLocation "Cert:\CurrentUser\My" -KeyUsageProperty Sign -KeyUsage CertSign

Client certificate:

New-SelfSignedCertificate -Type Custom -DnsName REBELCLIENT -KeySpec Signature `

-Subject "CN=REBELCLIENT" -KeyExportPolicy Exportable `

-HashAlgorithm sha256 -KeyLength 2048 `

-CertStoreLocation "Cert:\CurrentUser\My" `

-Signer $cert -TextExtension @("2.5.29.37={text}1.3.6.1.5.5.7.3.2")

6. Configure Point–to–Site Connection

7. Test VPN Connection

Thank you!

Hope This was Helpful to you.