Microsoft Azure and Amazon Web Services (AWS) are currently the only supported platforms that VPN tunneling on the LoadMaster works with. There are some limitations depending on the cloud platform being used. These limitations are outlined in the table below.

Architecture

Connection

Azure

AWS

Perfect Forward Secrecy

Unsupported

Supported

No Perfect Forward Secrecy

Supported

Unsupported

LoadMaster behind a Gateway

Supported

Unsupported

LoadMaster with a public IP address

Private subnets

Unsupported

Unsupported

Public subnets

Unsupported

Supported

As indicated by the table above, only a public interface tunnel is supported on AWS. This is because Network Address Translation Traversal (NAT-T) is not supported on AWS.

In Azure - multiple remote and private subnets are supported. So, it is possible to have multiple IPsec connections between Azure and the LoadMaster - each connection can connect a certain LoadMaster’s private subnet with a certain Azure subnet. It is also possible to connect to multiple tunnels within the one connection.