Forced tunneling with Default Site Method

Question

I've been looking for an answer to a question but I can't find the answer in the documentation.

If you use the Default Site method for Forced Tunneling, what happens if the tunnel to the Local Network Gateway that is set to be the Default Site goes down?

Will the route be removed and the default Internet route will take over, or will there be no Internet traffic at all until the tunnel is restored?

Answer 1

@Pieter Verbrugge

Greetings!

Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

When you are Configure forced tunneling by assigning a Default Site to the virtual network gateway. If you don't specify a Default Site, Internet traffic isn't forced through the VPN gateway and will, instead, traverse directly out to the Internet for all subnets (by default).

By default, Internet-bound traffic from your VMs goes directly to the Internet. If you want to force all Internet-bound traffic through the VPN gateway to an on-premises site for inspection and auditing, you can do so by configuring Force tunneling. After you configure forced tunneling, if desired, you can route Internet-bound traffic directly to the Internet for specified subnets using custom user-defined routes (UDRs).

• As a result, when the tunnel is down, there will be no internet traffic at all until the tunnel is restored. This means that any applications or services relying on internet access will not function until the VPN connection is re-established.

---

I hope this has been helpful!

If above is unclear and/or you are unsure about something add a comment below.

Your feedback is important so please take a moment to accept answers. If you still have questions, please let us know what is needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!

Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.