![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 86%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,514 questions
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
May I ask what your requirement here is?
A. If you're requirement is just to enable connectivity between ExR Gw deployed VNET and VPN Gw deployed VNET
- You can go for the above architecture
- Your OnPrem will not be able to access resources from the VPN Gw deployed VNET
B. If you want to enable connectivity between OnPrem and VPN Gw deployed VNET
- This configuration is not the correct approach.
- Creating a VNET Peering would only enable connectivity between ExR Gw deployed VNET and VPN Gw deployed VNET
- OnPrem and VPN Gw deployed VNET will not have connectivity.
- What you can instead do is
- Deploy a VPN Gw in the ExR Gw VNET
- See : ExpressRoute and S2S coexisting
- Delete the VPN Gw in the old Subscription and peer this VNET to the ExR Gw VNET with Gateway Transit enabled.
NOTE : If you have no dependency
on the old VPN Gw, you can simply delete it and no need to create a new one in the new Subscription.
Hope this helps.
Thanks,
Kapil
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.