# VPN Setup with Azure 1\. Login to the Monogoto portal and go to ***Network.*** 2\. Edit your **vpneu.mono** network (EU zone) or **"vpnus.mono"** network (US zone). ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FRcVb5dFt1ruK3rXzMdZW%2Fimage.png?alt=media\&token=4f047d04-bff8-43ed-9f77-cf30a062f5db) 3\. Go to **Routes** and copy Gateway IP. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FaWR4bW300Zl2QngaSyjw%2FVpn_Routes.png?alt=media\&token=1eb125fc-72df-496d-9900-1a48fabc753b) 4\. Login to your Azure account and create a new **Virtual Network Gateway**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FW5rAQWnc3b7X9RuLxj4Y%2Fimage.png?alt=media\&token=9058a8ad-99e0-4b7a-902a-2a9ac90210ea) 5\. In the window that opens, please do the following changes: * Name the **Virtual Network Gateway** as you see fit. * Choose the **Region** your **Virtual Network** resides in. * Select **VPN, Route-based, VpnGw1, Generation1** and select your **Virtual Network**. * Allocate a subnet address range for your **Virtual Network Gateway** on your **Virtual Network**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FdKpx57xVR8O4naP67jpH%2Fimage.png?alt=media\&token=20b2b247-41f0-4d67-a3c2-d5a42194c44c) 6\. For **Public IP address**, select **reate new**”and give it an appropriate name. Leave other options as default and click **Next** if you wish to tag your **Virtual Network Gateway** or **Review + create** to skip tagging. Note that **Virtual Network Gateway** can take a while to deploy. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FxkOIP06rT1NdYF4wNWcH%2Fimage.png?alt=media\&token=086e3791-0928-48a3-b42a-8f549a4fb6f5) 7\. Create a new **Local network gateway.** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FluYplmtvj8NgFuH48jax%2Fimage.png?alt=media\&token=f6d8b048-4e7c-438c-91cc-9facbf7f900e) 8\. Choose the appropriate **Resource group** & **Region**, name the **Local network gateway** to your liking, and for **IP address** enter the **Monogoto Gateway IP** we copied earlier. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FRh3ROdedidGMPqMpocTd%2Fimage.png?alt=media\&token=9849b4d5-c44f-4122-b055-998ba0766e97) 9\. In a new tab, go to the **Monogoto Network** we used earlier, and copy the CIDR range under **Ip Address / Mask** in **Address Pools.** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FWzZRE3E9ua4DKnDSWkG8%2Fimage.png?alt=media\&token=0fa4c183-133d-4677-a0ea-b2be8d8fc49a) 10\. Go back to the **Create local network gateway** tab and paste the **CIDR range** we copied in the **Address space** field, then click **Review + Create** and finally **reate**” ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FLgqaVt7m7GDaQeUKwcnw%2Fimage.png?alt=media\&token=2d9066de-66ba-4a48-99d9-aadf35f29e7d) 11\. Next, go to the **Virtual network gateway** we created earlier and copy the **Public IP address.** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2Fbait4HHf9tOIPe2L08bW%2Fimage.png?alt=media\&token=828c5809-08a9-4888-8c59-d9b287c0d298) 12\. Go back to the **Monogoto Network** page, and under **VPN** click **Add new.** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FfWp4ofU9HPBaib53l6SB%2Fimage.png?alt=media\&token=3cb759d0-88ea-45c4-80c7-4467253699a6) 13\. Name the VPN connection as you’d like. * Paste the **Virtual network gateway**’s public IP address we copied earlier in the **Destination IP Address** field. * In **Destination Network**, paste the **Azure Virtual Network** address range you would like to be able to access the VPN. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FoNAMPo7V96rXed6Y1Fiw%2Fimage.png?alt=media\&token=5949fd1f-1926-48a1-85ce-75d7052e7ab5) 14\. Click **Save & Close** and then **Apply Settings**” 15\. Once the VPN is created, click the **download configuration** button and copy the **Pre-Shared Key** from the downloaded file. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FhrITGhQUNZtMLmYYlnfD%2Fimage.png?alt=media\&token=a55460c0-ed2a-4ac8-a191-10db1d1f22e6) ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2F9tx87ui5MeinHe0xxuJL%2Fimage.png?alt=media\&token=8928e31a-f6cf-4fbc-8709-9ee8c9b94f07) 16\. On Azure, go to the **Virtual Network Gateway** we created earlier and click on **Connections**, then click **Add.** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FH4GgYPpkWp0F7qtehmns%2Fimage.png?alt=media\&token=ef1624cb-2c92-4efc-ba00-99668cbc0953) ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FtoYFip2LfsSOEFHF5xwP%2Fimage.png?alt=media\&token=78e49c9a-3854-470c-9e04-5b0bb9f6e038) 17\. Name your connection as you’d like. * Under **Connection type** select **Site-to-site (IPsec)**. * Click **Local network gateway** and select the Local network gateway we created earlier. * Paste the **Pre-Shared Key** you copied from the downloaded configuration file. **Important!** If you’re planning to use **Policy-Based VPN**, select **IKEv1**, otherwise select **IKEv2**. Leave all other options as default and click **OK** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FonGOCa8WRQoUeGhGAvEl%2FAzure_IKEv1.jpg?alt=media\&token=f3f3d160-f581-4915-9ff8-febf740fdc95) 18\. (**OPTIONAL**) If you prefer to use policy-based connections, click **configuration** in the connection we just created, change **IPsec / IKE policy** to **Custom** and make sure the settings are identical to the following screenshot: ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FyaHXx6r0tnY2rIThXh8w%2Fimage.png?alt=media\&token=650173e4-a621-4bc5-8706-eb2c0aee7881) 19\. Create/change any firewall rules you need to allow traffic between your Virtual Network and the Monogoto Address Pool. 20\. That’s it, your VPN connection should be up and connected.