On-premises expressroute BGP is advertising 0.0.0.0/0 and using Azure Firewall to control traffic (including internet)
hi My environment is an on-premises expressroute BGP is advertising 0.0.0.0/0. I want to use Azure Firewall to control all traffic (including internet). See and discuss the architecture picture attached below. My guess is that we need to send the route…
Hub and two Spoke vnets with AFW in Hub and traffic from Expressroute
Hello, I have got problem with not going traffic via Azure Firewall from ExpressRoute to one of two spoke vnets(I don't see any traffic on Firewall logs but I can see traffic with tcpdump on VM in spoke). Traffic to on-prem via ExpressRoute works fine…
Unable to send a SIP request from SBC via express route
We are using audiocodes sbc for voice in Azure. We have private connectivity via express route with provider and established vpn connectivity. we have two sip trunks already working now we are trying to build a new trunk over this path. Post provider…
Is it possible to enable diagnostic settings for express route gateway resource?
Is it possible to enable diagnostic settings for express route gateway resource? if yes, how can we create a deploy if not exist policy to achieve it?
how is the route table of the azure private peer of an expressRoute created and how do i flush 1 entry
We have a wrong entry in our routing table due to a misconfiguration of a bastion subnet. We changed the subnet, but the route remains.
How to become Express Route Connectivity Provider?
Dear, Can anybody give me a hand and show the process of becoming Microsoft Partner in a range of delivering Express Routes to final customers ? I mean - how to get on this list…
How can I tell the resiliency level of an EXISTING (already provisioned) ExpressRoute Circuit?
How can I tell the resiliency level of an EXISTING (already provisioned) ExpressRoute Circuit?
how can you tell the resiliency level of an existing (already provisioned) ExpressRoute Circuit?
trying to copy a EXR Circuit 1:1 & there seems to be no way to tell what kindof resiliency level is attached to an existing circuit. I've looked through the GUI, the JSON info, etc. AI answers my question like this: The resiliency level of the…
Azure VNET Gateway for Expressroute - impact if public IP changes
I have a production environment that has a VNET Gateway (type Expressroute) and it's working fine right now. However, the public IP that it has is a Basic SKU, and that's going away on September 30, 2025. On top of that, it's a dynamic Public IP. I…
Azure Hub Network with NVA and azure firewall and routing between VPN and Express route gateway through firewalls
Hi Team, I have attached the network diagram, Here is set up. There is HUB and Spoke topology with NVA. All traffic between on-premise and azure spoke is passing through NVA Third party location is connected through SDWAN VM over internet. SDWAN VM is…
Azure and Cisco Router not forming an express route BGP session
For some reason my BGP session to Azure through an Express Route connection is not forming. Below is the configuration of the Express Route Circuit: Peer AS: 65000 Subnets: IPv4 Primary IPv4: 10.x.x.0/30 Secondary IPv4 10.x.x.4/30 Vlan ID: XXX Cisco…
cannot ICMP or Route to any subnets from on premises through express route
We have a connection from our On-Prem data center to Azure using express route. I can ping the peer IP address and see the neighbor from on premises router using #sh ip bgp neighbor and #sh ip bgp summary. I am trying to ping a VM in a created subnet and…
from my on-premises setup i am unable to send the traffic to another VNET behind my Azure VNET. I have an Expressroute Gateway and an NVA in my subscription.
I have an on premises range 192.168.200.8/29, connected to Azure Network through Azure Express Route (gateway type - Express Route) and and NVA-Firewall. We are unable to route the traffic from an on-prem to another VNET. The traffic is getting dropped…
Users are not able to see some resources in a resource group where they have respective contributor access.
I created a resource group and added some resources in that. There I added my team through security group which has respective contributor roles for those resources. Some of these resources including blob storage is not visible to the team. To…
Configuration of an external firewall + ExpressRoute
Hello Community, I read a few threads here in the forum about a similar case, but the answer wasn't 100 percent clear to me. The following structure: I have an ExpressRoute via a VPN gateway in Azure, which is connected to OnPrem. An NVA (not from…
How to send traffic from a spoc (Hub and Spoc topology) to workload behind NVA present in 3rd party connected via Express route which only broadcast the NVA subnet range
Hi, In my scenario - From Azure Spoc, we are trying to reach workload for example (10.129.31.35) present behind a NVA hosted in a 3rd party system which is connected to Azure Hub vnet via Express route to Azure and broad cast only NVA's subnet range…
Synchronize with Entra Connect through ExpressRoute
Hello, Hope you are doing well! I think it is the prerequisite to deploy the hybrid AVD environment, so I need to use Entra Connect to synchronize the on-premise AD and Entra ID in a locked hybrid network which connected by ExpressRoute between…
Express Route private peering - BGP peering on prem but not in Azure
Established express route private peering. BGP sessions are established to on prem (see output below). Why isn't the Virtual Network Gateway displaying BGP Peering status? LCCO-AMdurNC01Brt11-AWS#sho ip bgp all summary Neighbor V AS…
How to debug where BGP session is failing
I've setup an Azure express route private peering session with on prem. Layer 2 connection is verified. I can ping from on prem to Azure. The ARP tables look good. The BGP peers are communicating but the BGP session is not established. How can I find out…
Branchoffice not available via ExpressRoute
Infrastructure: Azure - ExpressRoute Circuits (BGP) Subnet 10.20.0.0/16 Main Office Sophos Firewall Subnet 10.0.0.0/24 Branch Office Sophos Firewall Subnet 192.168.110.0/23 Azure (AVD) is connected via ExpressRoute to the Main Office. The…