I am new to Azure ExpressRoute. I want to check if I can use it for my problem statement

Question

Vodafone India wants to send data packets to an App service having Private IP address. I am exploring if ExpressRoute can be used instead of IPSec.

1. The data packets travels via PDA to vodafone APN using 4G network.
2. Upon reaching the router, a MPLS connection can be created to the gateway (red in color).
3. The gateway can then connect to Azure Private IP (VI Internet - yellow) via IPSec.

Can IPSec be replaced by ExpressRoute? If yes, how can I achieve. I want to know the different resources that I need to create.

Help will be greatly appreciated.

Deepak.

Answer 1

@Deepak Malavade

Welcome to the Microsoft Q&A forum.

Based on your question above and the architecture diagram.

Can IPSec be replaced by ExpressRoute?

Yes, you can replace your IPsec VPN with Azure Express Route. You will have to use the Azure Private Peering to securely connect to the private IP of the Azure Web App. Similar to the architecture discussed here.

If yes, how can I achieve. I want to know the different resources that I need to create.

You can through this video to understand the in-depth working of Azure Express route. You can also go through this pre-requisite section for Azure Express Route and different connectivity models.

To procure an express route circuit you need to work with a service provider who can help you connect your network's edge to Microsoft's Edge Network. As you have mentioned Vodafone in your question above, it is one of the supported connectivity provider in India located in Chennai, Mumbai2 regions.

You can refer to this architecture for further information.

Hope this helps! Please let me know if you have any additional questions. Thank you!

---

​​Please "Accept the answer" if the information helped you. This will help us and others in the community as well.