A VPN gateway is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet. You can also use a VPN gateway to send encrypted traffic between Azure virtual networks over the Microsoft network.
| Capability ID | Capability Description | Category | Value | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|---|
| azure_vpn_gateway | Azure VPN Gateway | protect | significant | T1040 | Network Sniffing |
Comments
This control encrypts traffic traversing over untrusted networks which can prevent information from being gathered via network sniffing.
References
|
| azure_vpn_gateway | Azure VPN Gateway | protect | significant | T1557 | Man-in-the-Middle |
Comments
This control can mitigate Man-in-the-Middle attacks that manipulate network protocol data in transit.
References
|
| azure_vpn_gateway | Azure VPN Gateway | protect | significant | T1557.002 | ARP Cache Poisoning | |
| azure_vpn_gateway | Azure VPN Gateway | protect | significant | T1557.001 | LLMNR/NBT-NS Poisoning and SMB Relay | |
| azure_vpn_gateway | Azure VPN Gateway | protect | partial | T1565 | Data Manipulation |
Comments
This control provides significant protection against one sub-technique (Transmitted Data Manipulation) of this technique while not providing protection for its remaining sub-techniques resulting in overall score of Partial.
References
|
| azure_vpn_gateway | Azure VPN Gateway | protect | significant | T1565.002 | Transmitted Data Manipulation |