Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
197 questions
1 answer
P2S Internet Access with ALZ Architecture (vWan)
I'm doing a POC learning a bit more about Azure vWAN. The infrastructure is based on the ALZ architecture (with minor adjustments). No ER, just using S2S and P2S VPN (only P2S configured at this stage - OpenVPN w/ AAD + address pools). Have a few spokes…
asked 2023-08-20T15:11:25.36+00:00
JC
10
Reputation points
commented 2023-09-06T13:36:22.24+00:00
GitaraniSharma-MSFT
49,006
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
NVA firewalls in availability set, how to prefer one over the other for outbound traffic
I have a standard load balancer sandwich design, with two NVA firewalls in an availability set, with spoke vNets peered to the NVA vNet. UDR's have static routing towards the internal load balancer. it all works well enough I have a requirement to prefer…
asked 2023-08-26T10:39:03.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 22%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESJ%3C/text%3E%3C/svg%3E)
Steven Johnston
40
Reputation points
accepted 2023-08-31T11:50:26.39+00:00
Steven Johnston
40
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure route server causes loss of connectivity from on-prem to azure
On prem network connectivity into azure is by means of Cisco SDWAN terminating in virtual wan hub which routes into azure vnets via Palo Alto NVA's. Deploying an Azure route server in the NVA vnet causes loss of connectivity from on prem to azure. Loss…
asked 2023-08-16T12:40:17.19+00:00
Steven Johnston
40
Reputation points
accepted 2023-08-24T14:32:31.72+00:00
Steven Johnston
40
Reputation points
1 answer
P2S VPN in Hub
We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we have multiple VNET's added to HUB. Please let me know whether below scenarios are expected behavior in HUB and why? 1.Once I added VNET into…
asked 2023-08-18T13:45:47.6633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 1%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
PR
130
Reputation points
commented 2023-08-23T03:25:33.0666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
24,231
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
VM Secure access using WAN & HUB(P2S VPN access)
Hello Team, We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we have multiple VNET's need to add into HUB. While adding the VNET connections, what is the recommended settings of "Associate…
1 answer
One of the answers was accepted by the question author.
VM Secure Access from Workstations
Hello Team, We have created Virtual WAN, and added connectivity HUB and Hub has been configured Point to site VPN, now we need to access our VM's which is hosted in different resource groups with Private IP from workstations when we connected to Azure…
Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
197 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,056 questions
0 answers
China user unable to connect to Point to Site User VPN
Hi All , Have a site of users from china that was not able to connect to the P2S network created in Azure vwan .Need some help on this
asked 2023-08-01T00:54:31.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 44%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGQ%3C/text%3E%3C/svg%3E)
Gary Quay (Admin)
0
Reputation points
commented 2023-08-02T13:06:38.9766667+00:00
KapilAnanth-MSFT
39,211
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Cannot Connect Site-to-site VPN between Azure vWAN and On-premise Zyxel SBG3300-N
I have created Azure virtual WAN then create virtual hub and the create site-to-tie VPN inside the Azure virtual hub. For VPN connection, I am setting IPsec to default but cannot connect to on-premise VPN device Zyxel SBG3300-N. I try to change IPsec…
asked 2023-07-23T08:00:37.0233333+00:00
Padtawee Srisan-ngam
60
Reputation points
accepted 2023-07-31T02:23:01.2966667+00:00
Padtawee Srisan-ngam
60
Reputation points
1 answer
One of the answers was accepted by the question author.
Virtual WAN
Is it true that Connection between the virtual hub cannot be secured by Azure firewall and only the traffic between the spoke and vhub is secured by Az firewall premium? Or this limitation has been fixed now
asked 2023-07-23T04:08:15.0366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 46%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
prasantc
876
Reputation points
commented 2023-07-24T19:33:03.7266667+00:00
Luke Murray
10,631
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
VWAN Migration
My client is about doing a POC for VWAN before migration current VNET hub to VWAN. We would like a better explanation and guide. BGP/IPSEC setup between Virtual Wan and on-premises and setting up BGP neighbor. Create second link to on-premises, second…
asked 2023-07-05T10:09:25.1166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 75%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELA%3C/text%3E%3C/svg%3E)
Love Arinze
156
Reputation points Microsoft Vendor
accepted 2023-07-24T17:14:16.4266667+00:00
Love Arinze
156
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Vwan and secured hub
Does virtual WAN and secured hub need to be in same subscription? How do we plan for resources across continental regions?
1 answer
One of the answers was accepted by the question author.
Azure virtual WAN
For a multi-continental region deployment what is the benefit of using - Three virtual WAN with secured hub with two region in each subcontinent over Single virtual WAN with secured virtual hub. Most of the MS docs diagram depicts single VWAN with…
asked 2023-07-05T23:39:21.7133333+00:00
prasantc
876
Reputation points
commented 2023-07-19T04:12:43.93+00:00
KapilAnanth-MSFT
39,211
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to manage firewall public ips for secure virtual hub?
Hi all, I've created a virtual hub in my environment, and now I'm trying to make it a secure virtual hub by adding an Azure Firewall instance. For the firewall I want to use two public ips that I have created previously. From looking at the…
asked 2022-09-06T08:52:14.513+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 24%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matthijs de Beer
61
Reputation points
commented 2023-07-17T17:27:41.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 91%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akshay Karoo
26
Reputation points
1 answer
One of the IP addresses for the P2S VPN does not work.
I have set up an Azure VWAN, with a P2S VPN gateway, with AzureAD Authentication. This works fine, half the time. Digging into packet captures and for about half the connection attempts we are getting http/400 error returns when attempting to connect to…
asked 2023-06-07T11:38:37.3266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Chris Musgrave
0
Reputation points
commented 2023-07-10T10:49:36.5433333+00:00
KapilAnanth-MSFT
39,211
Reputation points Microsoft Employee
1 answer
Virtual WAN Hub BGP peer limit
I have seen articles calling out the Azure Route Server only supports 8 BGP Peers, but I couldn't find anything specific to Virtual WAN Hub. What is the maximum number of BGP Peers Virtual WAN Hub can support?
asked 2023-06-07T19:17:52.1033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 20%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jacob Adams
0
Reputation points
commented 2023-06-13T05:46:20.5866667+00:00
KapilAnanth-MSFT
39,211
Reputation points Microsoft Employee
0 answers
BGP sessions over dual VPN Ipsec tunnels only work on Instance 0, Instance1 stays in connecting status, resulting in lost packets
Standard dual-path VPN from Virtual WAN hub to single virtual FortiGate with two public IPs in AWS, using BGP routing. Azure side shows only half of the BGP paths connected (ones related to Instance0 via both VPN tunnels) while virtual FortiGate in AWS…
asked 2023-06-02T06:17:39.1866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 49%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Martin Petder
0
Reputation points
commented 2023-06-09T06:31:30.1733333+00:00
KapilAnanth-MSFT
39,211
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Default Route vHub SDWAN NVA to Security NVA
Hello, We have a vHub with only defaultRouteTable. Regarding S2S Peers routing: This vHub has multiple S2S connection peers - some with BGP, some with traffic selectors. None have the 'Propagate Default Route' option enabled. Will an UDR 0.0.0.0/0…
asked 2023-06-02T13:38:56.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 3%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Caldeira Coutinho Diogo
20
Reputation points
accepted 2023-06-05T07:56:20.1+00:00
Caldeira Coutinho Diogo
20
Reputation points
3 answers
Azure Virtual WAN VPN site struggling with making it work with both IPSec instances active
Hi there, I am struggling to get the active-active tunnel functional in the lab with a WatchGuard FireBox. I use the downloaded VPN site config from Azure for the parameters. When both instances are up only one seems to receive the correct routing…
asked 2020-05-18T18:57:49.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 57.00000000000001%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
Didier Van Hoye
6
Reputation points MVP
commented 2023-06-02T06:39:05.48+00:00
Martin Petder
0
Reputation points
0 answers
Issue with outbound Internet Traffic through Load Balanced NVA in Azure Virtual WAN
Following is the Architecture - Azure Virtual WAN which has Cisco SD-WAN virtual appliances integrated with vWAN Hub (partner solution) and it also consist of Hub & Spoke topology. Hub Vnet consist of common services such as NVA, AD etc and Spoke…
asked 2023-05-07T12:49:18.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 25%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Raviraj Velankar
86
Reputation points
commented 2023-05-09T15:28:19.44+00:00
Konstantinos Passadis
17,381
Reputation points MVP
0 answers
Azure VPN through Web Proxy has stopped working
Simple problem, simple configuration. Am working on a Windows 10 test system. Trying to run the Azure VPN Client through a web proxy. Clients work fine when the test system is connected to the Internet, but we do not want to allow that. 1. This…
asked 2023-04-21T15:15:20.8066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 31%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELC%3C/text%3E%3C/svg%3E)
Lab Coat1
6
Reputation points
commented 2023-05-05T02:16:06.5266667+00:00
ChaitanyaNaykodi-MSFT
24,231
Reputation points Microsoft Employee