Set up the Azure-Cloud de Confiance VPN network attachment

This document provides high-level guidance on how to establish a VPN connection between Cloud de Confiance by S3NS and Microsoft Azure. The document also includes instructions for creating a network attachment in Cloud de Confiance.

Before you begin

Ensure you have the following:

  • Access to Azure and Cloud de Confiance accounts with appropriate permissions.
  • Existing VPCs in both Azure and Cloud de Confiance.

Set up networking on Cloud de Confiance

The setup on Cloud de Confiance requires creating the VPC network, the customer gateway, and the VPN connection.

Create the VPC network

  1. In the Cloud de Confiance console, go to the VPC networks page.

    Go to VPC networks

  2. Click Create VPC network.

  3. Provide a name for the network.

  4. Configure subnets as necessary.

  5. Click Create.

For more information, see Create and manage VPC networks.

Create the VPN gateway

  1. In the Cloud de Confiance console, go to the Cloud VPN gateways page.

    Go to Cloud VPN gateways

  2. Click Create VPN gateway.

  3. Select the Classic VPN option button.

  4. Provide a VPN gateway name.

  5. Select an existing VPC network in which to create the VPN gateway and tunnel.

  6. Select the region.

  7. For IP address, create or choose an existing regional external IP address.

  8. Provide a tunnel name.

  9. For Remote peer IP address, enter the Azure VPN gateway public IP address.

  10. Specify options for IKE version and IKE pre-shared key.

  11. Specify the routing options as required to direct traffic to the Azure IP ranges.

  12. Click Create.

For more information, see Create a gateway and tunnel.

Set up networking on Azure

  1. Create the virtual network. For detailed instructions, see Quickstart: Use the Azure portal to create a virtual network and Create a virtual network in the Azure documentation.
  2. Create a VPN routed to the virtual network that you created in the Create the VPC network section of this document. For detailed instructions, see Tutorial: Create and manage a VPN gateway using the Azure portal and Create a VPN gateway in the Azure documentation.
  3. Create a local network gateway with the public IP address of the Cloud de Confiance VPN gateway and the address space of the Cloud de Confiance network. For detailed instructions, see Create a local network gateway in the Azure documentation.
  4. Create a site-to-site VPN connection using the local network gateway that you created. For detailed instructions, see Create VPN connections in the Azure documentation.

Create the Cloud de Confiance network attachment

To attach the network to the Private Service Connect, do the following:

  1. In the Cloud de Confiance console, go to the Private Service Connect page.

    Go to Private Service Connect

  2. Select the resource that you want to attach to the network.

  3. Click Edit.

  4. In the Network attachments tab, select the network that you created in the Create the VPC network section of this document.

  5. Click Save.

For more information, see Create network attachments.

Verify the network connectivity

Ensure that the VMs in Cloud de Confiance can reach the VMs in Azure, and ensure that the VMs in Azure can reach the VMs in Cloud de Confiance.