Unnecessary VNET ?

Question

Unnecessary VNET ?

Amir Firouzi 40

Hi,

I just performed this exercise but I think there is a mistake. in the instruction below VNET "Azure-VNet-1" is created with gateway subnet.

az network vnet subnet create \ 
--resource-group "[sandbox resource group name]" \ 
--vnet-name Azure-VNet-1 \ 
--address-prefixes 10.0.255.0/27 \ 
--name GatewaySubne

But in the next page another VNET named "VNG-Azure-VNet-1" is created again with gateway subnet and both of them are located in Azure-side.

az network vnet create \ 
--resource-group "[sandbox resource group name]" \ 
--name VNG-Azure-VNet-1 \ 
--subnet-name GatewaySubnet

And in the next step a VNET GW is created with the same name. "VNG-Azure-VNet-1".

az network vnet-gateway create 
--resource-group "[sandbox resource group name]" 
--name VNG-Azure-VNet-1 
--public-ip-addresses PIP-VNG-Azure-VNet-1 
--vnet VNG-Azure-VNet-1 
--gateway-type Vpn 
--vpn-type RouteBased 
--sku VpnGw1 
--no-wait

I believe second VNET creation is unnecessary. I also read this tutorial in which one VNET is created.

Could you please explain about this issue?

Thanks.

Kiran P 8,230 Reputation points Microsoft External Staff Volunteer Moderator

2025-06-09T10:31:44.23+00:00

Hi Amir Firouzi,

Just checking in to see if you had a chance to see previous answer. Please let me know if it was helpful and don't hesitate to reach out to us if you face any issue.

If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.

Thank you.
Kiran P 8,230 Reputation points Microsoft External Staff Volunteer Moderator

2025-06-10T03:36:23.99+00:00

Hi Amir Firouzi,

Just checking in to see if you had a chance to see previous answer. Please let me know if it was helpful and don't hesitate to reach out to us if you face any issue.

If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.

Thank you.
Amir Firouzi 40 Reputation points

2025-06-11T08:21:10.6033333+00:00

Hi Kiran,

There is not a "Accept answer/Upvote" button!

I think because it was a comment and not an answer.

Accepted answer

0 additional answers

Your answer

Kiran P 8,230 Reputation points Microsoft External Staff Volunteer Moderator

2025-06-09T10:31:44.23+00:00

Hi Amir Firouzi,

Just checking in to see if you had a chance to see previous answer. Please let me know if it was helpful and don't hesitate to reach out to us if you face any issue.

If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.

Thank you.
Kiran P 8,230 Reputation points Microsoft External Staff Volunteer Moderator

2025-06-10T03:36:23.99+00:00

Hi Amir Firouzi,

Just checking in to see if you had a chance to see previous answer. Please let me know if it was helpful and don't hesitate to reach out to us if you face any issue.

If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.

Thank you.
Amir Firouzi 40 Reputation points

2025-06-11T08:21:10.6033333+00:00

Hi Kiran,

There is not a "Accept answer/Upvote" button!

I think because it was a comment and not an answer.

Answer 1

Hamid Sadeghpour Saleh 101 MVP Volunteer Moderator

Hi Amir,

That's interesting. What you’re seeing is likely a redundancy or inconsistency in the lab instructions.

Typically, only one VNet with a GatewaySubnet is needed to deploy a VPN Gateway.

The first command creates a subnet named GatewaySubne (note the typo—it should be GatewaySubnet) inside the existing VNet Azure-VNet-1.

The second command creates a new VNet named VNG-Azure-VNet-1 with its own GatewaySubnet.

Then the VPN Gateway is created on this second VNet.

In most real-world and tutorial scenarios, you just create one VNet with a properly named GatewaySubnet, then create the VPN Gateway inside it.

The second VNet creation seems unnecessary unless the lab intends to demonstrate managing multiple VNets or a specific scenario involving multiple VNets.

Kiran P 8,230 Reputation points Microsoft External Staff Volunteer Moderator

2025-06-12T03:35:26.1233333+00:00

Hi Amir Firouzi,

If you have found the answer provided to be helpful, please click on the "Accept answer/Upvote" button so that it is useful for other members in the Microsoft Q&A community.

Share via

Unnecessary VNET ?

0 additional answers

Your answer