![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 46%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Azure VMware Solution
An Azure service that runs native VMware workloads on Azure.
318 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Hello Ashok Chandra Venkumahanti (Microland),
Greetings! Welcome to Microsoft Q&A Platform.
Azure VMware Solution offers a private cloud environment accessible from on-premises sites and Azure-based resources. Services such as Azure ExpressRoute, VPN connections, or Azure Virtual WAN deliver the connectivity. However, these services require specific network address ranges and firewall ports for enabling the services. Your AVS Private Cloud is connected to the hub vnet via ExpressRoute. This provides a dedicated, private connection between your on-premises network and Azure.
You can use an existing ExpressRoute Gateway to connect to Azure VMware Solution as long as it does not exceed the limit of four ExpressRoute circuits per virtual network. However, to access Azure VMware Solution from on-premises through ExpressRoute, you must have ExpressRoute Global Reach since the ExpressRoute gateway does not provide transitive routing between its connected circuits.
ExpressRoute Global Reach allows you to connect multiple ExpressRoute circuits in different regions, including your AVS Private Cloud, to the same peering location and this enables communication across these circuits. However, by default, there is no transit connectivity between VPN and ExpressRoute gateways in the hub vNET. To achieve this transit connectivity, you can use either Azure Route Server or a third-party Network Virtual Appliance (NVA).
refer - https://learn.microsoft.com/en-us/azure/architecture/solution-ideas/articles/azure-vmware-solution-foundation-networking, https://learn.microsoft.com/en-us/azure/azure-vmware/architecture-networking
To enable communication between VMs in your on-premises environment and VMs in AVS Private Cloud, consider the following options:
Overlay with BGP: Implement a public Site-to-Site VPN with Border Gateway Protocol (BGP) to dynamically advertise AVS or other non-overlapping IP address spaces. This approach allows communication between on-premises and AVS.
ExpressRoute Termination: The AVS ExpressRoute is bundled as part of the private cloud cost, and no egress/ingress charges apply between AVS and the vNet where the ExpressRoute terminates. You can connect the AVS ExpressRoute to up to 10 different virtual network gateways.
Ensure that you have appropriate UDRs in place to route traffic between the different networks (on-premises, AVS, and hub vNET) and define the necessary routes to direct traffic through the desired path (e.g., via ExpressRoute or VPN connections).
Hope this answer helps! Please let us know if you have any further queries. I’m happy to assist you further.
Please "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.