Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
201 questions
1 answer
ExpressRoute and FortiGate BGP Issue in a Azure Virtual WAN
Good evening. We have deployed an Azure virtual WAN with a secured hub. The Azure virtual WAN has a VPN and ExpressRoute gateway deployed. The Azure virtual WAN routing preference is configured as ASPATH. All internet and private traffic is routed…
asked 2023-09-21T17:49:59.86+00:00
Jonathan Bell
26
Reputation points
commented 2023-10-04T16:39:13.4166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
24,656
Reputation points Microsoft Employee
1 answer
Where can I find Azure (private) DNS / Network limitations and what are their consequences
Hi, some of the azure products form an important part of our infrastructure. There are a few, but most importantly a private DNS zone, a virtual WAN, a virtual network, a MSSQL database, a private DNS resolver, and a couple of VMs for DNS forwarding via…
asked 2023-09-25T13:15:27.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 26%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
databay
0
Reputation points
answered 2023-09-29T03:09:58.63+00:00
ChaitanyaNaykodi-MSFT
24,656
Reputation points Microsoft Employee
0 answers
Virtual Wan Site to Site VPN Tunnel stops working after a couple days
Hello, i have a VPN site-to-site tunel between virtual wan and a fortigate appliance. Both sides show the tunel as UP and Connected, traffic flows in both directions and after a couple days it stops. Local Network: 172.24.8.0/21 Remote Network:…
asked 2023-09-19T12:20:51.36+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 94%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
Diego Fernandes Spinola Castro
0
Reputation points
commented 2023-09-21T17:34:40.75+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
Vnet peering
Is it possible to peer two vnet in the same region directly along with the vWan peering it already has. I need to make services between the vnet work while resolving vnwan route issues. Adding direct peering while it has a vWan peering should not cause…
asked 2023-09-14T05:55:32.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 46%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
prasantc
901
Reputation points
commented 2023-09-21T05:58:08.35+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
Azure Wan VPN Azure Firewall Routing Issue
I have a secured WAN with firewall and routing intent configured (internet and private ) traffic going through firewall. After creating a VPN site and connection to the HUB, i can confirm that the tunnel is UP and i see the on-premise's subnets…
asked 2023-08-31T01:37:20.3433333+00:00
Diego Fernandes Spinola Castro
0
Reputation points
commented 2023-09-07T13:32:20.31+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
P2S Internet Access with ALZ Architecture (vWan)
I'm doing a POC learning a bit more about Azure vWAN. The infrastructure is based on the ALZ architecture (with minor adjustments). No ER, just using S2S and P2S VPN (only P2S configured at this stage - OpenVPN w/ AAD + address pools). Have a few spokes…
asked 2023-08-20T15:11:25.36+00:00
JC
10
Reputation points
commented 2023-09-06T13:36:22.24+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
NVA firewalls in availability set, how to prefer one over the other for outbound traffic
I have a standard load balancer sandwich design, with two NVA firewalls in an availability set, with spoke vNets peered to the NVA vNet. UDR's have static routing towards the internal load balancer. it all works well enough I have a requirement to prefer…
asked 2023-08-26T10:39:03.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 22%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESJ%3C/text%3E%3C/svg%3E)
Steven Johnston
40
Reputation points
accepted 2023-08-31T11:50:26.39+00:00
Steven Johnston
40
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure route server causes loss of connectivity from on-prem to azure
On prem network connectivity into azure is by means of Cisco SDWAN terminating in virtual wan hub which routes into azure vnets via Palo Alto NVA's. Deploying an Azure route server in the NVA vnet causes loss of connectivity from on prem to azure. Loss…
asked 2023-08-16T12:40:17.19+00:00
Steven Johnston
40
Reputation points
accepted 2023-08-24T14:32:31.72+00:00
Steven Johnston
40
Reputation points
1 answer
P2S VPN in Hub
We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we have multiple VNET's added to HUB. Please let me know whether below scenarios are expected behavior in HUB and why? 1.Once I added VNET into…
asked 2023-08-18T13:45:47.6633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 1%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
PR
130
Reputation points
commented 2023-08-23T03:25:33.0666667+00:00
ChaitanyaNaykodi-MSFT
24,656
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
VM Secure access using WAN & HUB(P2S VPN access)
Hello Team, We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we have multiple VNET's need to add into HUB. While adding the VNET connections, what is the recommended settings of "Associate…
1 answer
One of the answers was accepted by the question author.
VM Secure Access from Workstations
Hello Team, We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we need to access our VM's which is hosted in different resource groups with Private IP from workstations when we connected to Azure…
Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
201 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,068 questions
0 answers
China user unable to connect to Point to Site User VPN
Hi All , Have a site of users from china that was not able to connect to the P2S network created in Azure vwan .Need some help on this
asked 2023-08-01T00:54:31.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 44%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGQ%3C/text%3E%3C/svg%3E)
Gary Quay (Admin)
0
Reputation points
commented 2023-08-02T13:06:38.9766667+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Cannot Connect Site-to-site VPN between Azure vWAN and On-premise Zyxel SBG3300-N
I have created Azure virtual WAN then create virtual hub and the create site-to-tie VPN inside the Azure virtual hub. For VPN connection, I am setting IPsec to default but cannot connect to on-premise VPN device Zyxel SBG3300-N. I try to change IPsec…
asked 2023-07-23T08:00:37.0233333+00:00
Padtawee Srisan-ngam
60
Reputation points
accepted 2023-07-31T02:23:01.2966667+00:00
Padtawee Srisan-ngam
60
Reputation points
1 answer
One of the answers was accepted by the question author.
Virtual WAN
Is it true that Connection between the virtual hub cannot be secured by Azure firewall and only the traffic between the spoke and vhub is secured by Az firewall premium? Or this limitation has been fixed now
asked 2023-07-23T04:08:15.0366667+00:00
prasantc
901
Reputation points
commented 2023-07-24T19:33:03.7266667+00:00
Luke Murray
10,896
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
VWAN Migration
My client is about doing a POC for VWAN before migration current VNET hub to VWAN. We would like a better explanation and guide. BGP/IPSEC setup between Virtual Wan and on-premises and setting up BGP neighbor. Create second link to on-premises, second…
asked 2023-07-05T10:09:25.1166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 75%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELA%3C/text%3E%3C/svg%3E)
Love Arinze
156
Reputation points
accepted 2023-07-24T17:14:16.4266667+00:00
Love Arinze
156
Reputation points
1 answer
One of the answers was accepted by the question author.
Vwan and secured hub
Does virtual WAN and secured hub need to be in same subscription? How do we plan for resources across continental regions?
1 answer
One of the answers was accepted by the question author.
Azure virtual WAN
For a multi-continental region deployment what is the benefit of using - Three virtual WAN with secured hub with two region in each subcontinent over Single virtual WAN with secured virtual hub. Most of the MS docs diagram depicts single VWAN with…
asked 2023-07-05T23:39:21.7133333+00:00
prasantc
901
Reputation points
commented 2023-07-19T04:12:43.93+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to manage firewall public ips for secure virtual hub?
Hi all, I've created a virtual hub in my environment, and now I'm trying to make it a secure virtual hub by adding an Azure Firewall instance. For the firewall I want to use two public ips that I have created previously. From looking at the…
asked 2022-09-06T08:52:14.513+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 24%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matthijs de Beer
61
Reputation points
commented 2023-07-17T17:27:41.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 91%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akshay Karoo
26
Reputation points
1 answer
One of the IP addresses for the P2S VPN does not work.
I have set up an Azure VWAN, with a P2S VPN gateway, with AzureAD Authentication. This works fine, half the time. Digging into packet captures and for about half the connection attempts we are getting http/400 error returns when attempting to connect to…
asked 2023-06-07T11:38:37.3266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Chris Musgrave
0
Reputation points
commented 2023-07-10T10:49:36.5433333+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
Virtual WAN Hub BGP peer limit
I have seen articles calling out the Azure Route Server only supports 8 BGP Peers, but I couldn't find anything specific to Virtual WAN Hub. What is the maximum number of BGP Peers Virtual WAN Hub can support?
asked 2023-06-07T19:17:52.1033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 20%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jacob Adams
0
Reputation points
commented 2023-06-13T05:46:20.5866667+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee