Options for Daisy chain VNet connections using NVAs and ASR

Hello @Pratheesh Pathiyandavida , Welcome to the Microsoft Q&A forum.

Onprem <-----> (ER)-HubVNet<----VNetPeering---->SpokeVNet(ER)<------>(ER)AzureSOAinstances

This Linear Daisy Chaining topology is possible to implement using Azure route Servers and NVA's. You can refer to this architecture design which utilizes Azure Express Route, Aure Routes Servers and NVAs to implement a similar architecture as mentioned above.

Depending on how you are planning to implement SOA applications you can go through this documentation on how your containers can communicate securely with other resources in the virtual network.

Hope this helps! Please let me know if you have any additional questions! Thank you!

----------

​​Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Chaitanya,
Thank you for your time reviewing my request.
As you may note that there are Two Express Route per the above provided Topology,

1. ER on the HubVnet connecting to Customer's MPLS
2. ER on the Spoke VNet connecting to another Azure instance (SOA instance managed service provide for hosting special workloads like AIX/LPAR etc)
3. Both Hub and Spoke VNet will need VNet peering, which will need consideration for placing the GW subnets and use of 'Remote GW'

Onprem <-----> (ER)-HubVNet<----VNetPeering---->SpokeVNet(ER)<------>(ER)AzureSOAinstances

Goal here is to enable communication between On-prem sites and the Partner managed Azure SOA instance. This is to ensure both forward and reverse traffic inspected by various services hosted in the Hub VNet (FW, SDWAN etc). Please let me know if there any architecture/documentation supporting this? Thank you again