Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
197 questions
2 answers
Virtaul WAN Implementation- How to Integrate PaloAlto as the egress firewall and how to connect 3rd party tenant VENTS
I am looking to deploy Palo Alto into Virtual WAN set-up to filter egress traffic and I am also looking for ways to integrate VNET's in a different tenant's to Virtaul WAN. Any ideas on this is highly apricated.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 13%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
0 answers
vNet one way Traffic route help
I have 3 subscriptions (One Production, 2 development). Since the development environments are managed by the developers we cannot allow traffic from those two vnets into production for security purposes. I would like to find a way to have all users…
asked 2021-09-28T15:09:38.923+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 50%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
Eric Schroeder
1
Reputation point
commented 2021-09-29T17:28:32.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 36%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SaiKishor-MSFT
17,216
Reputation points
2 answers
Microsoft Virtual WAN question
Hi Experts, I want to design the following: a Virtual WAN deployed with 2 HUBs in 2 x different regions. Both regions will have a similar topology - VNETs, Branches (via Site 2 Site VPNs) and Datacenter connectivity via Encryption enabled Express…
asked 2021-09-13T00:57:29.02+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 21%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Gleb Pestun
1
Reputation point
commented 2021-09-16T09:23:26.97+00:00
SaiKishor-MSFT
17,216
Reputation points
2 answers
One of the answers was accepted by the question author.
Virtual Hub connection
How can we create Connection between virtual hubs? As per document all hubs can communicate but it is not working for me?
asked 2021-08-23T15:57:23.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 91%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akshay Karoo
26
Reputation points
commented 2021-09-14T06:14:29.137+00:00
GitaraniSharma-MSFT
49,011
Reputation points Microsoft Employee
1 answer
Site to site VPN tunnel in Azure virtual WAN
We need to build a tunnel between on premise device with Azure using Virtual WAN network gateway, but we need to double nat subnet on both locations( to hide both VNET subnet as well as on premise internal subnets).It seems VPN gateway does not support…
asked 2021-09-02T06:37:20.227+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 23%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBK%3C/text%3E%3C/svg%3E)
Balaguru Krishnamoorthy
1
Reputation point
commented 2021-09-14T05:54:14.417+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 63%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBK%3C/text%3E%3C/svg%3E)
Balaguru Krishnamoorthy
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Always On VPN with VWAN - Connects but no connectivity
I have an Azure vwan with 2 hubs. HubWest HubWest2 All the resources at this time only live in HubWest. Currently using a P2S VPN on HubWest using a RADIUS server hosted in Azure. This works great no issues. I am trying to…
asked 2021-07-30T12:07:14.663+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 98%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Aaron Krytus
96
Reputation points
accepted 2021-08-05T21:08:44.22+00:00
Aaron Krytus
96
Reputation points
1 answer
Is Azure Virtual WAN fully meshed branch to branch?
Is Azure Virtual WAN fully meshed from branch to branch not just hubs to hubs? Meaning when a branch needs to communicate with another branch, does it build tunnels automatically between sites without going to the hub? Or everything has to route to the…
asked 2021-07-05T06:18:19.063+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 74%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJC%3C/text%3E%3C/svg%3E)
Jimmy Chen
1
Reputation point
answered 2021-07-07T18:03:49.86+00:00
suvasara-MSFT
10,026
Reputation points
1 answer
One of the answers was accepted by the question author.
Change Hub Private Address Range
Is it possible to change the private IP Address Space for a Virtual WAN Hub? Cant find a way in the UI - can it be done via other methods - PowerShell?
asked 2021-07-02T20:39:03.137+00:00
Ian Dicker
21
Reputation points
accepted 2021-07-06T13:49:15.473+00:00
Ian Dicker
21
Reputation points
1 answer
One of the answers was accepted by the question author.
Connect to a private AKS control plane through a P2S VPN connection to a virtual hub
I have a private AKS cluster deployed on a VNET with a BYO private DNS zone. In order to connect to the control plane I need to be able to resolve the *.privatelink.<region>.azmk8s.io domain name. In order to do that I need to create a virtual…
asked 2021-06-29T11:02:47.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 87%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJO%3C/text%3E%3C/svg%3E)
João Madureira
21
Reputation points
accepted 2021-06-30T16:08:21.96+00:00
João Madureira
21
Reputation points
3 answers
Azure VWAN with P2S and whitelisting.
We have recently implemented Azure Virtual WAN and the P2S gateway for our remote users to use. However, we are having some challenges around whitelisting services that do not use a proxy. As an example we access an SQL database with an 3rd party…
asked 2021-06-08T14:15:26.227+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 91%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETC%3C/text%3E%3C/svg%3E)
Tina Cheema
1
Reputation point
answered 2021-06-17T22:00:22.653+00:00
SaiKishor-MSFT
17,216
Reputation points
2 answers
One of the answers was accepted by the question author.
Azure vWan hub network address space requirements
Hello Experts, Azure vWan is there a documented network address space requirement for azure vWan hub
asked 2021-02-16T12:49:14.27+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 84%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESL%3C/text%3E%3C/svg%3E)
Shola Lawani
531
Reputation points Microsoft Employee
answered 2021-05-28T10:51:24.95+00:00
Stanisław Bugalski
6
Reputation points
1 answer
Overlapping Subnet in VNET-Peering and ExpressRoute?
Folks, In Azure, how can we detect or know if the Subnet1 in VNET1 is overlapping with Subnet2 in VNET2? also what would be the implication if any of the Subnets in Azure that we peered, is overlapping or the same as the onPremise Subnet after…
asked 2021-01-18T12:58:41.8+00:00
EnterpriseArchitect
5,016
Reputation points
commented 2021-05-22T20:05:57.27+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 93%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Vicky
1
Reputation point
2 answers
One of the answers was accepted by the question author.
Multiple site2site VPN bewteen virtual wan hub and one on-premise site to extend bandwidth
At the moment we are using 2 VPN Tunnels (active/active) between the Azure VPN GW and the on-premise network. Inside the tunnels BGP is used for Equal Cost Multipathing. This results in about 1.8 Gbit/s usable Bandwidth. There is need for more…
asked 2021-05-11T05:14:32.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 83%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETW%3C/text%3E%3C/svg%3E)
Thomas Wollnik
21
Reputation points
commented 2021-05-14T05:01:40.21+00:00
Thomas Wollnik
21
Reputation points
1 answer
Azure virtual WAN multi region Site-to-site VPN High Availability
Is it possible to create an HA multi region setup using Azure Virtual WAN and Site to Site VPN, as shown in the drawing below? It's connecting 2 routers to both regions, to build a highly available connection.
asked 2021-05-06T13:14:34.02+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 24%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Arne Vellinga
1
Reputation point
commented 2021-05-07T12:50:31.497+00:00
msrini-MSFT
9,266
Reputation points Microsoft Employee
1 answer
azure vwan p2s source ip - static or dynamic?
Currently, when creating a P2S vpn in a vWAN - the vpn setttings show a URL for connection, which appears be a traffic manager ip. I'm trying to set NSG rules based on that IP, but NSG won't accept a URL. My question revolves around whether that IP…
asked 2021-04-30T16:04:58.407+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 43%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Andrew Stueve
1
Reputation point
answered 2021-05-05T12:35:06.77+00:00
msrini-MSFT
9,266
Reputation points Microsoft Employee
2 answers
Infinite validation on last step of Creation new Secured virtual hub
Hi folks I am trying to create new Secured virtual hub but at last step (Review + Create) it goes to some validation process (as I uderstand) and it never ends. There is this running dots, screen goes dark and buttons inactive and nothing happens. I…
asked 2021-01-27T10:30:24.517+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 8%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Artem Abrosimov
1
Reputation point
commented 2021-04-23T13:14:23.413+00:00
suvasara-MSFT
10,026
Reputation points
1 answer
Is it possible to transfer the public IP address from one VM to another?
The title says it all I suppose. I've been tasked with figuring out how to transfer the Public IP address from one VM to another. The reason why is because we have test VMs that we prepare on a test resource group and then roll them out to the customer.…
asked 2021-01-12T04:43:33.6+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 89%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
marcus.smith
1
Reputation point
commented 2021-04-23T13:04:23.23+00:00
suvasara-MSFT
10,026
Reputation points
4 answers
One of the answers was accepted by the question author.
Vwan secret server in Azure VPN client
Hello, I have implemented a Vwan and create also an hub and connected multiple site. I need to create a connection point to site to allow me to reach my azure resources, I crate the configuration, downloaded the azure vpn client and I have all…
asked 2021-01-26T14:01:40.15+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 88%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Federico Staiano
116
Reputation points
answered 2021-04-16T09:43:00.527+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 57.00000000000001%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AntoineLRT
1
Reputation point
2 answers
Azure WWAN separate VPN traffic for P2S
Hello, We are looking at options to set up multiple VPN connections ( P2S, S2S etc.) We would then like to divide all the P2S and S2S users into different blocks. So block 1 would only be able to access certain VNET and block 2 would access another VNET…
asked 2021-04-07T20:24:44.223+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 51%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EED%3C/text%3E%3C/svg%3E)
ena dedic
36
Reputation points
commented 2021-04-13T19:55:36.3+00:00
SaiKishor-MSFT
17,216
Reputation points
1 answer
Isolated VNET address space propagated by peer VNET
VNET A & B... -VNET A peers with VNET B -VNET A has a Virtual Network Connection to a Virtual Hub. Can VNET A's Virtual Network Connection propagate VNET B's address space to the Virtual Hub's Route table?
asked 2021-03-15T23:12:48.783+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 6%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECY%3C/text%3E%3C/svg%3E)
CK Yamazake-Pat
1
Reputation point
answered 2021-03-18T11:51:02.837+00:00
GitaraniSharma-MSFT
49,011
Reputation points Microsoft Employee