Used to send encrypted traffic between an Azure Virtual Network and an on-premises location over the public internet.
It provides a more secure connection from on-premises to Azure over the internet.
3 types of connections:
- VNet to VNet.
- site to site (on-premises network to an Azure virtual network over an IPsec/IKE (IKEv1 or IKEv2) VPN tunnel).
- point to site (connection to your virtual network from a remote location).