Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to deploy a Route Server in a VNET connected to a vWAN vHub.
I checked this internally and our Product Group confirmed this is not a supported scenario.
Deploying a Route Server into the Spoke VNET will stop the VNET from learning the routes from the Hub.
I have created a request to update the FAQ section to highlight this here :
Can a spoke VNet have a Azure Route Server
If you could let us know the requirement for deploying a ARS into the SpokeVNET,
- We could try and suggest some alternatives
- In your case, I believe you were planning to eliminate UDRs and use BGP to route traffic from VNets VNET-1 and VNET-2
- In this case, based on your architecture, I am afraid we should rely on the UDRs only
NOTE
- Azure does not recommend multi-hub scenarios.
- https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture
- The general recommendation is to use Azure Firewall or NVA Partners in the vHUB directly to secure traffic
Should there be any follow-up questions or concerns, please let us know and we shall try to address them.
Thanks,
Kapil
Please Accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer.