IPSec and Azure Site to Site VPN RRS feed

  • Question

  • Hi all,

    We have a customer who has an azure subscription, we configured azure site to site vpn for them between their azure and their on-premise vpn gateway (it is a Palo Alto device).

    The connection status shows as connected, now they told us that they disabled IPSec connectivity between their on-premise and Azure till we apply security in Azure (we do not know what they mean by that), however I still see the connection status as connected, so if IPSec is disabled, what could this affect? Note that we do not have yet any VMs on the azure and the customer wants us to upload VHD files to azure to create VMs from them and be reachable from the on-primes site. 

    • Moved by YASWANTH MADI Monday, April 16, 2018 7:00 PM Better suited here
    Monday, April 16, 2018 5:57 PM


  • Hello Ahmad,

    Disabling IPsec in network can affect encrypt/decrypt process in network traffic and it will also affect authentication process between two nodes as IPsec is generally used to perform these tasks in intranet. In answer to your query about uploading VHD to Azure you can refer to this link for more detailed information. 


    If this answer was helpful, click “Mark as Answer” or Up-Vote. To provide additional feedback on your forum experience, click here

    • Proposed as answer by Zahid Faroq Tuesday, April 17, 2018 10:17 AM
    • Edited by Zahid Faroq Tuesday, April 17, 2018 10:19 AM
    • Marked as answer by AhmadJY Tuesday, May 15, 2018 7:15 PM
    Tuesday, April 17, 2018 10:14 AM