In Microsoft Azure VPN Gateway, there aren't too many areas for improvement, but the configuration part might be a little tricky. It took some time to get things to work, but once figured out, it becomes much easier. The documentation could use some improvement, particularly regarding point-to-site system setup with on-premise systems. Other than that, it's seamless, and you can connect things across regions. Regarding integration with Microsoft Azure VPN Gateway, we use Function Apps to create the integrations and Data Factory. All our data pipelines are written in Python, hosted within an Azure Data Factory or a Function App. This makes configuration easier and allows pipeline monitoring and creating integrations between different systems. We've created multiple integrations between SharePoint and our data warehouse, HubSpot and our data warehouse, and several other tools.
The instructions on how to integrate P2N and P2S type networks into Azure VPN Gateway could be improved, though it is a constantly evolving process. The instructions should have been more accessible and less time-consuming to find the best solution tailored for the customer.
Infrastructure Architect at a maritime company with 10,001+ employees
Real User
Top 20
Nov 14, 2024
There is a need to improve the paperwork and management approval process, which is currently painful, though not directly related to the VPN Gateway itself.
The monitoring part needs to be improved. Specifically, it should better handle connection availability and be able to send alerts in case of disruptions.
Learn what your peers think about Microsoft Azure VPN Gateway. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
Azure VPN Gateway has features that enhance its usability. From a user's perspective, a valuable aspect would be monitoring tools. Specifically, Azure VPN Gateway supports Azure Diagnostic logs. These logs allow users to pull data and gain insights into the system's performance and issues. With these logs, users can identify solutions by examining the data. Additionally, having a real-time traffic flow monitoring tool would be beneficial. Such a tool would significantly improve identity management and security by providing real-time visibility into traffic flows and ensuring a high degree of identity verification.
Senior Infrastructure Engineer at a energy/utilities company with 1,001-5,000 employees
Real User
Top 10
Feb 16, 2024
I'd like to see no difference between point-to-site or site-to-site. For the Gen1 VPN Gateway, you can have a maximum of 30 site-to-site VPNs or 100 and 28 point-to-site. I don't see why site-to-site can't be 100 and 28 also. In future releases, I would like to see the ability to inject BGP routes.
The marketing material in the portal is not very user-friendly. We faced some issues when trying to run a campaign. It was not opening. Some campaigns open directly on Outlook and others in Word documents. There should be one single framework, either Outlook or Word.
The product must provide a single sign-on. As of now, a shared secret is exchanged between both VPNs. It is quite compromisable. It will be good if a single sign-on feature is enabled in VPN Gateway or bundled with it.
Considering my use cases, I can fulfill my requirements using the product. The existing requirements of my company are pretty simple, and I think this product can meet those requirements. The solution's pricing will always remain a challenge since anyone would want to get the solution at the lowest possible price. I would like Microsoft to improve the pricing of the solution. Also, the technical support team could be more knowledgeable.
The solution can be improved by including a config map to separate some traffic from different bases on similar on-premise equipment that can offer this functionality.
Principal Cloud Architect at a wholesaler/distributor with 1,001-5,000 employees
Real User
Top 10
Jul 19, 2022
In the past, reliability has not been great. Deployment has not been simple. Getting it to run is a difficult process. With one being the easiest experience and five being the most difficult, I would give the deployment process a three and a half out of five. Make it completely routable, for example, if I have a gateway, I should be able to connect to whatever network I want on either side of the gateway, and the gateway should figure out which packet goes where. This is a traditional firewall or network gateway administration that has been removed from the Azure VPN and Gateway functionality, which should just put it back where it belongs, because as it is now if you have three networks, three different networks on either side of Azure, you have to configure one gateway per network.
Solution consultant at a computer software company with 1,001-5,000 employees
Real User
Apr 30, 2022
Microsoft Azure VPN Gateway could improve by providing IPS zero-day threat protection. For example, the IPS zero-day threat protection can monitor the user behavior to protect the infrastructure. The solution can only be used as a VPN, it is lacking features.
Consultant at Open Source & Cloud Advisory Services Architect IBM
MSP
Top 10
May 20, 2020
I would like for them to improve the troubleshooting features. We have some problems with traffic and I can't identify where the problem is coming from. I have to open a ticket with support until it gets resolved. Microsoft doesn't offer enough tools to resolve the issue.
A VPN gateway is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet. You can also use a VPN gateway to send encrypted traffic between Azure virtual networks over the Microsoft network. Each virtual network can have only one VPN gateway. However, you can create multiple connections to the same VPN gateway. When you create multiple connections to the same VPN gateway, all VPN...
In Microsoft Azure VPN Gateway, there aren't too many areas for improvement, but the configuration part might be a little tricky. It took some time to get things to work, but once figured out, it becomes much easier. The documentation could use some improvement, particularly regarding point-to-site system setup with on-premise systems. Other than that, it's seamless, and you can connect things across regions. Regarding integration with Microsoft Azure VPN Gateway, we use Function Apps to create the integrations and Data Factory. All our data pipelines are written in Python, hosted within an Azure Data Factory or a Function App. This makes configuration easier and allows pipeline monitoring and creating integrations between different systems. We've created multiple integrations between SharePoint and our data warehouse, HubSpot and our data warehouse, and several other tools.
The instructions on how to integrate P2N and P2S type networks into Azure VPN Gateway could be improved, though it is a constantly evolving process. The instructions should have been more accessible and less time-consuming to find the best solution tailored for the customer.
There is a need to improve the paperwork and management approval process, which is currently painful, though not directly related to the VPN Gateway itself.
I would like to see improvements in the deployment process as I faced challenges.
The monitoring part needs to be improved. Specifically, it should better handle connection availability and be able to send alerts in case of disruptions.
The product's deployment phase is not simple, making it an area where improvements are required.
Azure VPN Gateway has features that enhance its usability. From a user's perspective, a valuable aspect would be monitoring tools. Specifically, Azure VPN Gateway supports Azure Diagnostic logs. These logs allow users to pull data and gain insights into the system's performance and issues. With these logs, users can identify solutions by examining the data. Additionally, having a real-time traffic flow monitoring tool would be beneficial. Such a tool would significantly improve identity management and security by providing real-time visibility into traffic flows and ensuring a high degree of identity verification.
The solution should provide metrics to monitor the inbound and outbound traffic easily. The point-to-site connections must be improved.
I'd like to see no difference between point-to-site or site-to-site. For the Gen1 VPN Gateway, you can have a maximum of 30 site-to-site VPNs or 100 and 28 point-to-site. I don't see why site-to-site can't be 100 and 28 also. In future releases, I would like to see the ability to inject BGP routes.
More configuration options could be included in Microsoft Azure VPN Gateway.
The marketing material in the portal is not very user-friendly. We faced some issues when trying to run a campaign. It was not opening. Some campaigns open directly on Outlook and others in Word documents. There should be one single framework, either Outlook or Word.
Microsoft could work on having micro VPNs to integrate with mobile devices.
The product must provide a single sign-on. As of now, a shared secret is exchanged between both VPNs. It is quite compromisable. It will be good if a single sign-on feature is enabled in VPN Gateway or bundled with it.
They should release a less expensive version of the solution.
Considering my use cases, I can fulfill my requirements using the product. The existing requirements of my company are pretty simple, and I think this product can meet those requirements. The solution's pricing will always remain a challenge since anyone would want to get the solution at the lowest possible price. I would like Microsoft to improve the pricing of the solution. Also, the technical support team could be more knowledgeable.
The solution can be improved by including a config map to separate some traffic from different bases on similar on-premise equipment that can offer this functionality.
In the past, reliability has not been great. Deployment has not been simple. Getting it to run is a difficult process. With one being the easiest experience and five being the most difficult, I would give the deployment process a three and a half out of five. Make it completely routable, for example, if I have a gateway, I should be able to connect to whatever network I want on either side of the gateway, and the gateway should figure out which packet goes where. This is a traditional firewall or network gateway administration that has been removed from the Azure VPN and Gateway functionality, which should just put it back where it belongs, because as it is now if you have three networks, three different networks on either side of Azure, you have to configure one gateway per network.
The cost could be lower. In the next release, Microsoft should add an option to schedule upgrades.
Microsoft Azure VPN Gateway could improve by providing IPS zero-day threat protection. For example, the IPS zero-day threat protection can monitor the user behavior to protect the infrastructure. The solution can only be used as a VPN, it is lacking features.
Their technical support could be better. If you don't have a support contract, it takes longer.
I would like for them to improve the troubleshooting features. We have some problems with traffic and I can't identify where the problem is coming from. I have to open a ticket with support until it gets resolved. Microsoft doesn't offer enough tools to resolve the issue.