Creating a Virtual Network Gateway

Jamf Connect Documentation
Solution
Application
Jamf Connect
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US
  1. Log in to your Azure account and select the region in which you would like to create the VPN gateway.
  2. Search for and navigate to the Virtual Network Gateway service in your account.
  3. Complete the following:
    1. Define a Name that describes the configuration (for example, JamfPrivateAccessVirtGW).
    2. Select the nearest Region to the one defined in Jamf Security Cloud.
    3. For Gateway type select "VPN".
    4. For VPN type select "Route-based".
    5. Define an appropriate SKU based on your functional requirements.

      Jamf recommends that you use the Standard SLA for your public IP so that it remains static.

    6. Select an appropriate Generation based on your requirements.
    7. For Virtual Network, select an existing (or create a new) network (VNet) that this connection should attach to.
    8. In the Gateway subnet address range, define a network range in CIDR notation that should be accessible via this IPSec tunnel.

      This should encapsulate all of the applications, servers, and workloads you would like to make available to users via Access Policies.

    9. In the Public IP address area, select Create new to allocate a new static IP to this configuration, or select Use existing if you have another IP available to use for this connection.
    10. Give the public IP address a name for future reference (for example, JamfPrivateAccessIPSecPublicIp).
    11. For Assignment select Static.
    12. Leave Enable active-active mode and Configure BGP set to Disabled.
  4. Click Review + Create.
  5. Verify all settings, then click Create to deploy the gateway configuration.