Create a S2S between GL-X3000 and Azure

Hi All,
Sorry new to the group so if I've posted this in the wrong please point me in the right direction :slight_smile:
I have a GL-X3000 and would like to create a Site to Site (S2S) VPN from my on prem network to my Azure Tenant/Subscription.
I think :nerd_face: I need the following to set this up but not 100% sure -

  • List itemvNetGateway (created a VpnGw1 SKU)
  • DDNS for my router (think I already have for GoodCloud) so can use with the connection
  • Pre-shared key (done)
  • local gateway network somehow links to my GL-X3000 router (on prem)
  • Create a connection between the vNetGateway and local network gateway

If anyone has done this can they please confirm how or if I'm on the right tracks and point me to some documentation I can follow?

Thanks in advance :+1:

BoB
*

What kind of VPN does your NetGateway support?
IPSec, for example, isn't supported by the GL firmware without modification.

Hi admon,
Yeah so unfortunately I think the Azure Site to Site VPN uses IPSec with a Pre-Shared Key :frowning: . You mentioned a modification is that like one of these plug-ins? Is there any documentation on it? Unless anyone else knows how to create a site-to-site vpn to Azure (ideally with a PaaS or SaaS service rather than an IaaS VM...

Thanks for your help :slight_smile:
Shaun

Unfortunately, there is no documentation for it on GL.iNet routers.
You can try the official one for OpenWrt, but it might require advanced knowledge - or does not even work.

https://openwrt.org/docs/guide-user/services/vpn/strongswan/basics

Be prepared to reset your router if you did something wrong.

Maybe this helps as well: OpenWRT (22.03) IPsec IKEv1 Setup | by Andrei Skopenko | Medium

I would not recommend to use IPsec on OpenWrt, tbh.

1 Like