Home Office Solution during the COVID-19 Pandemic using Microsoft Azure VPN Gateway

4 min readJul 18, 2024

--

Home Office Solution during the COVID-19 Pandemic using Microsoft Azure VPN Gateway

Project Description:

In this real-world-based project, I acted as a Cloud Specialist to create a solution for employees transitioning from office work to home-based work. The goal was to enable secure access to the corporate environment hosted in Microsoft Azure without exposing the entire environment to the internet.

To solve this business problem and meet the requirements, I implemented Point-to-Site (P2S) VPNs. This allowed employees working from home to establish an encrypted tunnel between their computer and the Microsoft Azure environment.

Solution Architecture Home Office Solution during the COVID-19 Pandemic using Microsoft Azure VPN Gateway

Summary of How I Provisioned and Deployed the Home Office Solution

Preparation and Setup:

Item 1: Creating VNetBootcamp

Set up a Virtual Network (VNET) in Azure to serve as the foundational network infrastructure for connecting various resources securely.

Item 2: Creating VM app1

Deployed a Virtual Machine (VM) named app1 within the VNet to host applications and services required by remote workers.

Item 3: Creating VPN Point-to-Site (P2S)

Configured a VPN Gateway in Azure to enable secure Point-to-Site (P2S) connections. This gateway serves as the bridge between remote users and the Azure VNET.

Create (P2S) Point-to-Site Configuration

Point-to-Site IKE (Internet Key Exchange) with SSTP (Secure Socket Tunneling Protocol)

Item 4: Downloading the Certificates

Obtained the necessary certificates for establishing secure VPN connections. Certificates ensure encrypted communication between the client and Azure VPN Gateway.

Configure IKE (Internet Key Exchange) with SSTP (Secure Socket Tunneling Protocol)

Item 5: Adding a Pool of IPs

Defined a pool of IP addresses (range: 172.16.0.0/24) to be assigned to VPN clients. This range ensures that each remote user gets a unique IP address while connected.

Item 6: Generating and Installing VPN Azure

Generated VPN client configuration files and installed them on the remote users’ machines to enable connectivity.

Remote Connection via VPN:

Item 1: Installing the Certificate

Installed the downloaded certificate on client machines.
Password: xxxxxxxxxxxx

Import Client Certificate for VPN Access

Item 2: Installing an Azure VPN

Configured the Azure VPN client on remote machines to establish secure connections to the Azure environment.

Download Azure VPN client for remote machines & configure

Item 3: Connecting to the Azure VPN

Successfully connected to the Azure VPN from a remote location, allowing secure access to resources within the Azure VNet.

Validated Client VPN connection to VNetBootcamp

Item 4: Testing the Remote Connection using Private IP

Verified the connection by accessing resources in Azure using their private IP addresses.

Verified Client VPN connectivity via ping 10.0.0.5

Verified Telnet via port 22 [ ssh azureuser@10.0.0.5 -i tcbvm1_key.pem ]

Item 5: Installing Apache

Installed Apache web server on app1 VM to host web applications and ensure that the setup is functioning correctly.

Installed Apache web server on app1 VM to host web applications

Validated Apache web server installation

Validated / Verified Apache Landing Page

Conclusion:

This project provided a practical solution for enabling secure remote work during the COVID-19 pandemic using Microsoft Azure VPN Gateway. By implementing P2S VPNs, employees could securely access the corporate environment without exposing it to the internet. This setup ensured business continuity while maintaining security and efficiency.

Follow Me:

Thank you for following my journey through this Azure VPN Gateway project. Stay tuned for more insights and projects on cloud solutions. Follow me on Medium to keep up with my latest posts and projects.