IKEV2 VPN Macbook/OSX add static route, Azure Point to Site connectivity - macos

I am unable to access all of the resources in my peered network in Azure when I do a VPN from macbook (VPN type IKEV2) have tried add routes didn't worked.
In windows to get this working was to edit the routes.txt file and add static routes in.
How will I go adding the same in Mac.
System Details
Mac osx - 10.13.2
Looking for
Ability to add/define static routes for my peered virtual network for IKEV2 type VPN in mac.

We found a bug in the P2S VPN gateway that prevent this from working out of the box. The fix is currently being rolled out in Azure. You can wait until next week when we complete the rollout, or open a Service Request from Azure Portal and our support engineer can apply the fix directly to your Azure Gateway. Sorry for the issue you are running into.
Thanks,
Yushun [MSFT]

Related

Can't reach Azure App Service from within my private LAN on a windows machine

This morning I noticed that none of the web apps I am running in Azure is reachable anymore.
I first thought its an issue with Azure itself, but when I try to connect with a mobile hotspot (through my phone) everything works as expected.
The problem seems only to exist in my own LAN at home but only Azure is affected.
When I try to navigate to a website, I get the following message:
I also cannot nslookup it:
I do not have any problem with surfing the internet. All other sites work fine... but I don't even know where to start on solving this problem.
Does anybody know a tool to diagnose this? What could be wrong here...?
I did not have any issues with accessing the services yesterday.
In recent years, DNS has become the most vulnerable part of the internet, as many other components are strengthened significantly.
Like you discovered, for some unknown reasons the DNS your machine connects to failed to sync the proper Azure related records. That's not an uncommon issue if you read about how badly DNS infrastructure around the globe was maintained.
Usual solutions are,
Switch to other DNS service than your default ISP provided ones, Google/Cloudflare public DNS servers are popular, and there are many other good options.
Hack your hosts file (but that's too complicated).
Since you had no Problems yesterday, my first question is: Did you change anything in your local Network?
Maybe some new Firewall rules or maybe some entry in your Host File for testing?
When you try to access Azure with only the IP, does that work? If yes then you have to look at your DNS.(maybe try Google DNS 8.8.8.8)

Global Protect and Azure VM

I would like to connect to Global protect on my azure virtual machine. installation is not an issue. but when I connect to VPN, I get disconnected from VM and when connection comes back global protect is no longer connected.
Can anyone help ?
I'm running into the same problem but only when I use the Azure VPN P2S Gateway. I have other VMs in Azure that do not use the Azure VPN GW and I don't encounter any issues using Global Protect.
I found this article detailing why it's happening and some workarounds. The "Nested Remote Desktop Connection" option worked for me though it's not ideal. I'm reading through the "Configure a Source NAT on the Router" option and trying to figure out how to apply it using the Azure VPN GW.
https://knowledgebase.paloaltonetworks.com/kCSArticleDetail?id=kA14u000000HAoM

How to rdp from mac to azure vm through vnet gateway

I am trying to rdp from my local mac to an Azure instance through a (IKEv2) vpn connection. I am never prompted for a password, and it looks like the connection just times out. The error code I get is 0x204.
I have tried using both Microsoft Remote Desktop 8 and 10 for mac.
The connection is active and reports that it is connected.
From the mac, I can connect to another VM (in the same azure account) which is not running behind a vpn.
From Parallels Desktop (with networking set to Shared mode and the vpn connection active on the mac), I can successfully connect using the windows rdp client.
So it seems the Microsoft RDP-client for mac is not using the vpn connection.
Is there a way to make it do so?
Is there another solution, that will allow me to rdp to an Azure VM from my mac (without going through Parallels)?
Note: This is not the same question as this, since that is not about going through an azure vnet gateway.
I needed to add hosts file entries for each azure site I needed to access.
For example for accessing my-vm-name.someregion.cloudapp.azure.com, I needed to add a hosts file entry for it's private IP within the subnet. E.g. 10.2.0.100.
The reason everything worked in Windows under Parallels, is that the relevant entries had already been added to the hosts file previously.

Make Xcode server available outside a local network with a dynamic IP

We have an Xcode Server, working perfectly in our local network.
Now we also want be able to access this Xcode Server when working remotely.
The problem is that the network has a dynamic IP.
What is the best way to make Xcode server available over the web to Macs outside our local network?
I use the free DDNS service from Dynu Systems. They have an API which allow you to update your IP address as it changes.
They provide a updater app that will make the updates for you, or you can check out Dynumite on the Mac App Store. It lives in your menu bar and updates on a schedule you set. (Full disclosure: I wrote it.)
Unfortunately Xcode Server no longer allows you to specify your own SSL certificate, so you will have a notification when accessing your server remotely using the browser, but Xcode should be fine and display your server (with FQDN).
I often work with ngrok.com, I use it to make my localhost accessible form outside my network for web hooks etc.
Ngrok.com
Maybe something for you?
Good Luck!

IIS 7 and ASP.Net MVC issue

This is a bit complex - so here we go.
I am developing a mobile web application using asp.net mvc and I need to test it locally on my iPhone. So far I have the first iteritaion of the site running on my local dev laptop. I created a virtual dir for the site under IIS 7 on the same machine. I deployed the site to that folder from VS2008. I open a browser and entered "" and the site cam up just fine. I am runnig a home network with locked down WIFI and both the laptip and my iPhone are on the network. So now I want to test with the iPhone but the site won't come up when browsing to "". I have another machine that is also on the network and I get this error message when attempting to browse to the site:
"Website (laptopname) is online but isn't responding to connection attempts"
I have a feeling that this has something to do with IIS setting and \ or application pools but have not been able to find anything relavent goolging. Any help appreciated.
There are some possibilities:
iPhone is not able to resolve your laptop by name. Try using the IP address of your computer in the URL instead.
The firewall on the laptop is blocking inbound connections from other machines. Check your firewall.
The IIS Website is configured with a host header localhost so it won't respond to requests to other hostnames. Check the binding for the Web site in the IIS Manager.
To eliminate possible network issues, you can create an ad hoc WiFi network on your PC and connect to that network to test.
Check that Allow Anonymous Access is set for the site
I suspect you are not alone, as I had this exact problem. I developed a small port opener I called "SharpProxy" that may make your local testing much easier.
Overview and instructions:
http://www.codefromjames.com/wordpress/?p=97
It's open source! Get code here: https://github.com/jocull/SharpProxy

Resources