Hey guys, i have a running pritunl vpn server in my company in our internal network currently configured with a nat. The Webserver part of pritunl is only accessible from within the network for security reasons. Though once conencted to it and after settting up their vpn profile, they can normally connect to the vpn.
Now we are migrating all of our internal services to “Azure App Proxy” which is basically a proxy provided by microsoft azure to give external access to internal resources. The catch is, that one can configure things like pre-authentication through entra id (formerly azure ad) and we would like to use that for pritunl aswell.
So my question here is, is this possible for pritunl? I have found this in the documentation but i am unsure if this is what would do the trick Security ?
How would i need to configure this then?
Azure App Proxy is quite simple to configure, i just need to provide an external url and an internal url and the proxy is basically doing the rest. You can configure separate subdomains and even subfolders with different settings if this helps. So for the webui i could configure vpnweb.company .com or vpn.company .com/web with pre-authentication and leave vpn.company .com or vpn.company .com/vpn without pre-auth through the azure app proxy.
Hopefully someone can help me figure out, how i can get this. I guess also a problem is the internal nat that is being done?