This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 46%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETA%3C/text%3E%3C/svg%3E)
Hi, I've created two subnets on the same virtual network.
I've defined a default route to a Azure firewall in this vnet.
I can reach two sample hosts (one on each subnet) with RDP from internet, passing through the firewall.
But If I try to produce traffic from a host to the other and vice versa, this traffic doesn't go to firewall.
How to solve?
Please 'Accept as answer' if the provided information is helpful, so that it can help others in the community looking for help on similar topics.
"Hub&Spoke" is the name of a network topology, nothing "Azure-Special":
Hub-spoke network topology in Azure
Regards
Andreas Baumgarten
(Please don't forget to Accept as answer if the reply is helpful)
This is the solution!
Many thanks for help.
It works fine!
Ok understand but the nic of the firewall in which vnet must belog to receive the traffic from the other new two?
Without knowing your detailed requirements or targets it's hard to say.
A subnet A, a subnet B, all subnets must do traffic to and from internet through a virtual firwall, each subnet must be separated from the other and the firewall must manage also this traffic with policies.
How to do that?
Sounds like a Hub and Spoke topology is a good option:
Hub virtual network with the firewall and 2 spoke virtual networks with the VMs.