Share via

Does azure support two vpn gateways from the same azure virtual network to two different aws vpcs for peering?

Vasundhara Raj 0 Reputation points
2023-05-27T06:50:27.9566667+00:00

There is one Virtual Network having one VPN gateway, and its peered to AWS VPC.
We want to peer one more AWS VPC using same azure Virtual Network. Can we create one more VPN gateway to same Virtual Network?

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,796 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,775 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Luke Murray 11,436 Reputation points MVP Volunteer Moderator
    2023-05-27T07:07:34.85+00:00

    You can only have 1 Virtual Network Gateway per Virtual Network - however, you can peer the virtual networks, to communicate across them with gateway transit, or have multiple S2S VPNs across the same gateway.

    Depending on your use case - make sure you take a look at Azure Virtual WAN.

    1 person found this answer helpful.
    0 comments
  2. GitaraniSharma-MSFT 50,096 Reputation points Microsoft Employee Moderator
    2023-05-27T10:45:25.87+00:00

    Hello @Vasundhara Raj ,

    Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

    I understand that you would like to know if Azure supports two vpn gateways on the same virtual network.

    Each virtual network can only have one virtual network gateway of each type.

    The available values for -GatewayType are:

    • Vpn
    • ExpressRoute

    A VPN gateway requires the -GatewayType Vpn.

    Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-gateway-settings#gwtype

    So, you cannot create more than one VPN gateway in a single Virtual Network.

    Also, each virtual network, including a peered virtual network, can have its own gateway. But, when you configure the gateway in the peered virtual network as a transit point to an on-premises network, the virtual network that is using a remote gateway can't have its own gateway. In such a case, the virtual network can have only one gateway - this gateway is either a local or remote gateway in the peered virtual network.

    Please refer: https://learn.microsoft.com/en-us/azure/virtual-network/virtual-network-peering-overview#gateways-and-on-premises-connectivity

    Now, coming to the point where you want to add a site-to-site connection to one more AWS VPC using same Azure Virtual Network, you can use your existing VPN gateway and create a new additional connection to the other AWS VPC.

    You can create more than one VPN connection from your virtual network gateway, typically connecting to multiple on-premises sites or AWS VPCs.

    enter image description here

    Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/design#s2smulti

    https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-multi-site-to-site-resource-manager-portal

    Kindly let us know if the above helps or you need further assistance on this issue.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.