
Firewall to Azure Site to Site VPN
To update this post: Many changes have been made to Azure VPN Gateway since, here are the latest updates: 1. IKEv1 is no longer Supported. You need a firewall that supports IKEv2 Settings as recommended: Key Negotiation Tries: 5 Re-key connection: On Compression: Off SHA2 with 96-bit trunctation: Off Authentication: Main Mode Phase 1: Key Life 28800, Re-key Margin 60, Randomize Re-key Margin by 100 - DH Groups: 2, 14, 21 - Encryption: AES256, Authentication SHA2 256; - Encryp