1. Overview

This project focuses on establishing a hybrid networking environment between a simulated on-premises datacenter (VNet) and Azure utilizing Azure VPN Gateway in both Active-Standby and Active-Active configurations.

2. Objective

• To understand traffic flow patterns in different VPN Gateway modes.
• To analyze traffic behavior and path routing during VPN instance reset scenarios.

3. Test Conditions

• Network Configuration: A hybrid connection was established between a simulated On-premises environment (Active-Standby) and Azure (Active-Active).
  • On-Premises CIDR: 192.168.0.0/24
  • Azure VNet CIDR: 10.0.0.0/24, 10.0.10.0/24
• Test Methodology: TCP SYN traffic was generated using hping3 to analyze packet routing behavior and instance distribution across VPN gateways.
• Test Scenarios: 300 SYN packets were sent in both directions using the command: hping3 -S -c 300 "IP"

1. On-premise (Active/Passive) → Azure (Active/Active)
2. Azure (Active/Active) → On-premise (Active/Passive)

4. Test Results

4.1 Traffic Flow in Active-Standby and Active-Active Modes

Packets were captured on both the VMs and the VPN gateways. The following results show only the filtered SYN packets from the TCP connections.

1. Traffic Direction: Simulated On-Premise (VPN Active/Passive) → Azure (VPN Active/Active)