Share via

Connectivity between three different companies infra hosted on Azure

Prashant Chaudhary 20 Reputation points
2024-01-04T12:24:14.0633333+00:00

Dear Team,

Existing Configuration:

In the current setup, Company 2 has established a Site-to-Site (S2S) connectivity with Company 3, utilizing Virtual WAN. This arrangement allows Company 2 to access the SAP HANA application hosted by Company 3.

Desired Configuration:

The desired configuration entails enabling direct communication between Company 1 (on Azure) and Company 3's SAP HANA through Company 2.

Company 1 seeks to establish an additional Site-to-Site (S2S) VPN connection with Company 2, leveraging the existing VPN infrastructure. The objective is to enable Company 1 to interact with Company 3's SAP HANA application using the permitted subnets.

In simpler terms, the inquiry is whether it is feasible to create another S2S connection between Company 1 and Company 2, utilizing the current Site-to-Site VPN, thus facilitating communication from Company 1 to Company 3.

Your guidance on this matter would be greatly appreciated.

Thanks,

Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
260 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,778 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Sedat SALMAN 14,185 Reputation points MVP
    2024-01-04T13:18:15.03+00:00

    In order to achieve your desired configuration, Company 1 can connect to Company 2 via an S2S VPN. This setup would enable Company 1 to communicate with Company 3's SAP HANA application via Company 2's infrastructure. Essentially, by utilizing Azure Virtual WAN's capabilities, Company 1 can connect to Company 2 via an S2S VPN and then make use of the already-existing connectivity between Company 2 and Company 3 to access the SAP HANA application. This method is predicated on the assumption that all necessary routing and permissions are set up correctly across the involved networks.

    https://learn.microsoft.com/en-us/azure/virtual-wan/virtual-wan-about

    Small Guide

    Company 1 needs to set up a Site-to-Site VPN connection with Company 2. This involves configuring a VPN device at Company 1's end and connecting it to Company 2's Azure Virtual WAN hub.

    Ensure that the Azure Virtual WAN hub in Company 2 is configured to allow transit connectivity. This means that the hub should facilitate communication not just to and from Company 2, but also between Company 1 and Company 3.

    Set up appropriate routing rules and permissions within Company 2’s Azure Virtual WAN hub to ensure that traffic from Company 1 can reach Company 3's SAP HANA application. This includes configuring network routes and access control lists.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.