Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
187 questions
1 answer
One of the answers was accepted by the question author.
Azure virtual WAN
For a multi-continental region deployment what is the benefit of using - Three virtual WAN with secured hub with two region in each subcontinent over Single virtual WAN with secured virtual hub. Most of the MS docs diagram depicts single VWAN with…
asked 2023-07-05T23:39:21.7133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 46%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
prasantc
751
Reputation points
commented 2023-07-19T04:12:43.93+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to manage firewall public ips for secure virtual hub?
Hi all, I've created a virtual hub in my environment, and now I'm trying to make it a secure virtual hub by adding an Azure Firewall instance. For the firewall I want to use two public ips that I have created previously. From looking at the…
asked 2022-09-06T08:52:14.513+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 24%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matthijs de Beer
61
Reputation points
commented 2023-07-17T17:27:41.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 91%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akshay Karoo
26
Reputation points
1 answer
One of the IP addresses for the P2S VPN does not work.
I have set up an Azure VWAN, with a P2S VPN gateway, with AzureAD Authentication. This works fine, half the time. Digging into packet captures and for about half the connection attempts we are getting http/400 error returns when attempting to connect to…
asked 2023-06-07T11:38:37.3266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Chris Musgrave
0
Reputation points
commented 2023-07-10T10:49:36.5433333+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
Virtual WAN Hub BGP peer limit
I have seen articles calling out the Azure Route Server only supports 8 BGP Peers, but I couldn't find anything specific to Virtual WAN Hub. What is the maximum number of BGP Peers Virtual WAN Hub can support?
asked 2023-06-07T19:17:52.1033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 20%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jacob Adams
0
Reputation points
commented 2023-06-13T05:46:20.5866667+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
0 answers
BGP sessions over dual VPN Ipsec tunnels only work on Instance 0, Instance1 stays in connecting status, resulting in lost packets
Standard dual-path VPN from Virtual WAN hub to single virtual FortiGate with two public IPs in AWS, using BGP routing. Azure side shows only half of the BGP paths connected (ones related to Instance0 via both VPN tunnels) while virtual FortiGate in AWS…
asked 2023-06-02T06:17:39.1866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 49%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Martin Petder
0
Reputation points
commented 2023-06-09T06:31:30.1733333+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Default Route vHub SDWAN NVA to Security NVA
Hello, We have a vHub with only defaultRouteTable. Regarding S2S Peers routing: This vHub has multiple S2S connection peers - some with BGP, some with traffic selectors. None have the 'Propagate Default Route' option enabled. Will an UDR 0.0.0.0/0…
asked 2023-06-02T13:38:56.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 3%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Caldeira Coutinho Diogo
20
Reputation points
accepted 2023-06-05T07:56:20.1+00:00
Caldeira Coutinho Diogo
20
Reputation points
3 answers
Azure Virtual WAN VPN site struggling with making it work with both IPSec instances active
Hi there, I am struggling to get the active-active tunnel functional in the lab with a WatchGuard FireBox. I use the downloaded VPN site config from Azure for the parameters. When both instances are up only one seems to receive the correct routing…
asked 2020-05-18T18:57:49.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 57.00000000000001%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
Didier Van Hoye
6
Reputation points MVP
commented 2023-06-02T06:39:05.48+00:00
Martin Petder
0
Reputation points
0 answers
Issue with outbound Internet Traffic through Load Balanced NVA in Azure Virtual WAN
Following is the Architecture - Azure Virtual WAN which has Cisco SD-WAN virtual appliances integrated with vWAN Hub (partner solution) and it also consist of Hub & Spoke topology. Hub Vnet consist of common services such as NVA, AD etc and Spoke…
asked 2023-05-07T12:49:18.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 25%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Raviraj Velankar
66
Reputation points
commented 2023-05-09T15:28:19.44+00:00
Konstantinos Passadis
17,286
Reputation points
0 answers
Azure VPN through Web Proxy has stopped working
Simple problem, simple configuration. Am working on a Windows 10 test system. Trying to run the Azure VPN Client through a web proxy. Clients work fine when the test system is connected to the Internet, but we do not want to allow that. 1. This…
asked 2023-04-21T15:15:20.8066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 31%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELC%3C/text%3E%3C/svg%3E)
Lab Coat1
6
Reputation points
commented 2023-05-05T02:16:06.5266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
22,776
Reputation points Microsoft Employee
0 answers
Bgp status showing not connected
Hello , I have created vpn gateway , local gateway, virtual wan , virtual hub. I am trying to create bgp neighbour between vpn gateway and virtual hub but bgp state showing not connected. VpnGW asn 65510 peer ip 192.168.1.254. VWAN asn 65515 peer ip…
asked 2023-04-18T15:51:47.8333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 4%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPP%3C/text%3E%3C/svg%3E)
Pankaj Patil
0
Reputation points
commented 2023-04-24T13:15:11.6966667+00:00
GitaraniSharma-MSFT
47,316
Reputation points Microsoft Employee
1 answer
Azure VWAN Inter-region traffic filtering when using Secured Virtual HUBs
Hi Microsoft team, we have configured Azure VWAN with Secure virtual hubs( With Azure firewall), but as per the Microsoft documentation, we see inter-region traffic filtering is not possible on the firewall. We have tested the below in our lab: We have…
asked 2023-03-22T13:27:40.8033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 48%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVG%3C/text%3E%3C/svg%3E)
Veerraju Gopalli
20
Reputation points
commented 2023-04-03T14:51:47.7733333+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure VWAN HUBs
Hi There, We have 10 VNETs in 2 Locations: West US 2 and North Europe. Each location has a number of VMs and App Services. We are spanning over 100 remote locations (including ER, VPN S2S and P2S). We are considering Azure Virtual WAN Standard…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 37%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ2%3C/text%3E%3C/svg%3E)
2 answers
Azure P2S VPN for Remote Workers
Hello, I would like to know if there is an alternative to a forced tunnel VPN through Virtual WAN in Azure. We have an external company that needs to access one of our Azure Virtual Desktops. We use the azure remote desktop app that uses 365 credentials…
asked 2023-03-17T13:35:09.4066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 27%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFJ%3C/text%3E%3C/svg%3E)
Ferry, James
0
Reputation points
commented 2023-03-24T13:27:50.7766667+00:00
GitaraniSharma-MSFT
47,316
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure secured hub with cross tenant Vnet peering
Hello, I am facing one challenge in Azure networking and I am really trying to figure it out but without luck at the moment. I have configured secured virtual hub in vWAN (Virtual WAN + Virtual hub + Azure Firewall). Thing is that there is…
asked 2022-05-16T15:15:49.55+00:00
Oldrich Srubar
61
Reputation points
edited the question 2023-03-23T13:57:37.2866667+00:00
GitaraniSharma-MSFT
47,316
Reputation points Microsoft Employee
1 answer
Can we convert secure hub to unsecure Hub in azure portal
https://learn.microsoft.com/en-us/azure/virtual-wan/howto-firewall#convert-to-secured-hub Following the above article, now I want to convert back my Hub to unsecure setting. Kindly assist if this is possible.
asked 2023-03-14T07:07:44.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 9%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Nagrath, Richa
21
Reputation points
commented 2023-03-16T14:29:04.5266667+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
Can ZScaler replace expressroute?
Hi, We have an on-prem network that we want to connect to our Azure IaaS environment but we're wondering if zscaler can replace express route for this?
asked 2023-02-21T18:28:10.3133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 43%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDG%3C/text%3E%3C/svg%3E)
DeHaven Graham
101
Reputation points
commented 2023-03-03T22:29:53.9533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 4%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
kobulloc-MSFT
23,341
Reputation points Microsoft Employee
0 answers
P2S VPN user connectivity issue in Azure virtual WAN
Doing PoC for Virtual WAN but facing issues for p2s vpn connectivity. P2S remote user when connected to virtual hub is not able to access resources in same region spoke Vnet and in other region Spoke Vnet. We have Azure Virtual WAN setup with two vWAN…
asked 2023-02-20T12:01:07.33+00:00
Raviraj Velankar
66
Reputation points
commented 2023-02-23T15:37:06.7933333+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
vWAN between diff subscriptions
Hello, We are trying to implement vWAN for primary & DR region.Both the vWAN hub will sit under a different subscription. I know for the fact , hub to hub connection by default enabled under a single vWAN. CAn this be achieved if vWANs are under…
asked 2022-03-23T02:58:59.297+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 55.00000000000001%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Mohammed Thahif BK
341
Reputation points
edited the question 2023-02-23T12:15:11.0433333+00:00
GitaraniSharma-MSFT
47,316
Reputation points Microsoft Employee
6 answers
Azure Virtual WAN - routing internet traffic for P2S connections
Greetings, this question relates to the following already existing one: https://learn.microsoft.com/en-us/answers/questions/589858/azure-wan-and-p2s-vpn-forced-tunneling.html I am facing the same issue: after connecting successfully to the P2S…
asked 2022-05-14T21:41:44.61+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 3%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
NSimpraga
166
Reputation points
answered 2023-02-20T21:57:34.4066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 84%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Manuel-Daniel Negru
0
Reputation points
1 answer
how to secure Vwan and p2s forced tunneling via Sophos XG firewall in azure
can we use Sophos XG firewall and secure Vwan for p2s vpn forced tunnling via sophos in azure?
asked 2023-02-13T22:02:31.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 49%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWR%3C/text%3E%3C/svg%3E)
Waghmare Ram
0
Reputation points
commented 2023-02-20T07:49:20.8533333+00:00
KapilAnanth-MSFT
34,926
Reputation points Microsoft Employee