I have configured a point to site vpn, with a vnet, vnetgateway, route based. its configuered with openvpn (ssl) as i want toi use azure ad authentication with MFA The vnet is configured to use the Azure default DNS servers. All the above works great, UNTIL i want to use our Azure DNS servers, so custom ones which can be configured in the vnet. When I add our dns servers although the vpn connection works, it does not allow the vpn clients access to the outside world or even the azure portal. Can anyone help. Many thanks.
You have probably set forced tunneling to on in the VPN client. That won’t work unless you have a firewall setup to send the internet traffic for you. You have to use split tunneling if you don’t have a firewall.
Does Azure P2S VPN now support forced tunnel? Last I checked it only did split tunnel.
You can force tunnel but the gateway won’t route any internet-bound traffic. Just drops the packets.