Microsoft recently announced that direct internet connection for virtual machines will be deprecated at the end of September 2025. So how are we going to grant virtual machines with internet access without an Azure Firewall? We can use Azure NAT Gateway to grant internet access.
So lets get started!
STEP 1: Create the NAT Gateway
Go to the Azure portal. And search for NAT gateway at the top. And create a new gateway.
Today we will be deploying the gateway in North Europe, select your resource group, give your NAT gateway a name. Click next when ready.
If you need more than 1 public IP adress, you can add Public IP prefixes. For now we just need 1 public IP. If you don’t have an Public IP address create one.
From the next tab select your virtual network, and select which subnets need to go through the NAT Gateway. you can change this later on if you need to.
As a final step review the configuration and create the NAT Gateway