This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 12%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERD%3C/text%3E%3C/svg%3E)
I'm having some difficulties implementing some of the MS documentation and from other readings on setting up some networking. I have a hub vnet, vnetb, and two spokes, vneta and vnetc. A is peered to B, and B to C, but traffic won't flow from C to A (both to B are fine, and the network gateway in B routes to on-prem just fine and A, B, and C are visible). I know that peering isn't transitive, so I was told to add a UDR with a route from A's CIDR to B's CIDR, and vice versa. I know the proper approach is to use an NVA and set the hop to the firewall, or deploy a virtual WAN, but neither of those are an option (way too long to explain). From what I read this should work as long as you're going vnet to vnet, but it just doesn't work and I wanted to reach out and ask here before delving any further into an alternate solution (we also don't want to peer A and C directly, and we want to avoid more virtual network gateways). We want all traffic to have to flow through B so that if we do opt to set up a firewall, we've got the right place to put it. Each of the VNets are in a different subscription but same region.
Thanks!
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I am afraid that I am not aware of any documents stating you can achive transitive connectivity by "add a UDR with a route from A's CIDR to B's CIDR, and vice versa".
As you mentioned, transitive connectivity would only work with
Cheers,
Kapil
May I know if you got a chance to review my previous comment?
Please let me know if you are facing any challenges or if there are any follow-up questions, I shall be glad to address them.
Thanks,
Kapil
Reaching out to check if there are any questions on this.
Please let us know if we can be of any further assistance here.
Thanks,
Kapil
Can you please update us if the action plan provided was helpful?
Should there be any follow-up questions or concerns, please let us know and we shall try to address them.
Thanks,
Kapil
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 0%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Hi @Richard Duane Wolford Jr , you can achieve what you wanted using a VPN Gateway on vnet b. More info in my blog: https://medium.com/@siwibowo/azure-hub-and-spoke-1cd956a0cfaa