![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 9%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
225 questions
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to configure BGP peering with a virtual hub and NVA
As long as the HA ports are configured in the ILB, I do not see a reason as to why this would not work.
- BGP is built over TCP. See RFC 4271
And Azure Load Balancer can accept TCP and UDP traffic. Hence, this configuration should work.
- Since the traffic would be load balanced, just make sure stateful inspection on the NVA or related firewall settings is turned off or asymmetric forwarding is turned on.
- To give more details, the inbound traffic to NVA can come on any instance directly to NVA interface from on premises and then on the return if the traffic is forwarded to ILB, the ILB will hash and distribute traffic to either instance of NVA.
- Meanwhile, you can test this out by taking a maintenance period or in a lower Test/Dev environment.
Should there be any issues, please do let us know.
Cheers,
Kapil
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.