Share via

Using Firewall for AVD

Nidhi Priya 596 Reputation points
2025-05-26T12:24:08.17+00:00

Hi experts!

I have to configure Firewall for AVD, and I have a large organization with more than 500 AVDs in different region and in different subnets.

So, without peering between Firewall-Vnet and AVD-Vnet, AVD is not working properly. So, if we need it to work properly for which

  1. do we need to add peering between Firewall Vnet and each and every Vnet one by one? (If yes, it will become huge chaos for network team to configure it)
  2. Or is there any efficient way to do the same.

Let me know.

Thanks!

Azure Virtual Desktop
Azure Virtual Desktop

A Microsoft desktop and app virtualization service that runs on Azure. Previously known as Windows Virtual Desktop.

0 comments

Answer accepted by question author

Nikhil Duserla 9,940 Reputation points Microsoft External Staff Moderator
2025-05-26T12:50:50.86+00:00

Hello @Nidhi Priya,

To set up a firewall for Azure Virtual Desktop (AVD) in a large company with many regions and networks, you can use a hub-and-spoke design. This means putting one main firewall in a central network (the hub) and sending traffic from other networks (the spokes) through it. This makes it easier to manage and keeps the network secure.

Deploy Azure Firewall in a central hub virtual network (VNet) and connect all Azure Virtual Desktop (AVD) VNets as spokes. Configure user-defined routes (UDRs) in each spoke VNet to route traffic through the Azure Firewall in the hub.

If you have any further queries, do let us know.

Was this answer helpful?

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.