Share via

VPN site to site

Handian Sudianto 4,511 Reputation points
2022-11-07T08:27:55.953+00:00

257834-top.jpgI have topology as attached picture, now the traffic from on-prem will go to azure vpn1 if the destination is 10.210.0.0/16 and go to azure vpn2 if the traffic destination is 10.220.0.0/16.
With this topology can we make the link for redundant, so if link between on-prem1 to azure vpn1 is down, the traffic to 10.210.0.0/16 will go to azure vpn2 then to vnet2 and finally reach to vnet1 (of course i also change routing to 10.210.0.0/16 to on-prem2)?

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,461 questions
0 comments
Accepted answer
  1. Alan Kinane 16,811 Reputation points MVP
    2022-11-07T12:46:29.94+00:00

    If you are using two separate Virtual Network Gateways for the VPN tunnels then you will not be able to peer the VNETs as it's only support to have one gateway.

    What are you looking to achieve here? You can get dual redundancy built into the Virtual Network Gateway directly.

    https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-highlyavailable#dual-redundancy-active-active-vpn-gateways-for-both-azure-and-on-premises-networks

    257912-image.png

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andreas Baumgarten 104K Reputation points MVP
    2022-11-07T09:04:17.627+00:00

    Hi @Handian Sudianto ,

    this should be possible. You have to configure the routing properly and also you have to change the settings of the peering between vnet1 and vnet2 ( Virtual network gateway - Use this virtual network's gateway / Use the remote virtual network's gateway).

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten