Point-to-Site (P2S) VPN in Azure is a solution designed to address the need for secure connections from individual devices to Azure resources. This technology provides a virtual private network connection from a user’s machine to an Azure Virtual Network, enabling secure access to applications and services hosted in the cloud. With this, the user can install and connect the VPN client to connect the windows or Linux Virtual machines deployed in Azure. Note that, the Virtual Machine doesn’t need a Public IP address to be able to connect through RDP or SSH as the VPN tunnel will enable the user to connect through a secure channel

Following are the high-level steps involved in this exercise

Step 1: Create Resource Group – All the resources like VPN connection, network components, Virtual machines etc. are going to be created under this resource group

Step2: Create Network Resources – Virtual Network, Gateway Subnet, Virtual Network Gateway

Here are some of the important settings for the virtual network gateway that I have created

Step3: Self signed SSL certificate generation for server and client

I have followed the excellent Microsoft documentation (Generate and export certificates for point-to-site using PowerShell) here to carry out the SSL certificate generation

The Virtual Network Gateway has been configured like as follows with the certificate

Step4: Create the Virtual Machine – Windows/Linux

Step5: Install and Connect the VPN Client, Connect the Virtual machine securely

The VPN Client can be downloaded as below:

Install the appropriate client in your PC and configure the application. The VPN will be available to connect as below, in your computer. Once connected, you are ready to connect the azure resources securely