I'm looking for a way to have all my users' connections appear to come from a single static IP address that can be whitelisted by the client network. I'm currently using Azure for a VPN and firewall setup, but the IP displayed still shows the one given by the ISP. What can I do to make sure all traffic is routed through this one designated public IP?
3 Answers
Another option is to create a single Azure Virtual Desktop (AVD) instance. Attach it to a virtual network that has a NAT gateway with your desired public IP. Users can connect to the AVD while on the go, and their traffic will originate from that IP.
If you're using Microsoft 365 without any on-premises resources, ensure that your P2S VPN is set to full tunnel. This usually requires configuring virtual WAN and user-defined routes (UDRs). Alternatively, a Linux VM running WireGuard or OpenVPN can be a cost-effective way to achieve a static IP.
To make sure all connections route through a single IP, set up a Point-to-Site (P2S) VPN in Azure with forced tunneling. This should ensure that all traffic passes through the Azure firewall or NAT gateway, masking the original IP with the static one you've configured.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures