Forum Discussion
Best way to join VM from one VNet to Azure AD DS custom domain in a different VNet
Hi AzureBrian
You've hit the nail on the head with the two options; vNET Peering or a vNET-to-vNET Gateway connection. This blog post gives you a good run down on the differences between the two:
https://azure.microsoft.com/en-gb/blog/vnet-peering-and-vpn-gateways/
As peering occurs over the private network within Azure only (there is no public traffic over a peered connection) I would implement Peering due to its lower latency and general easier administration.However, if having the traffic between the vNETs encrypted is a key requirement then Gateways would be the only appropriate course of action.
There's no way to use routing tables on their own to achieve what you're looking for as by design vNETs are isolated from each other.
Hope this helps,
Anthony
Hi AzureBrian
You've hit the nail on the head with the two options; vNET Peering or a vNET-to-vNET Gateway connection. This blog post gives you a good run down on the differences between the two:
https://azure.microsoft.com/en-gb/blog/vnet-peering-and-vpn-gateways/
As peering occurs over the private network within Azure only (there is no public traffic over a peered connection) I would implement Peering due to its lower latency and general easier administration.
However, if having the traffic between the vNETs encrypted is a key requirement then Gateways would be the only appropriate course of action.
There's no way to use routing tables on their own to achieve what you're looking for as by design vNETs are isolated from each other.
Hope this helps,
Anthony
- Thanks Anthony_Norwood for the quick response! I do indeed believe the peering will likely be the way I will go. I've used that technique before but I didn't know if it was one of the preferred methods in this scenario. Thanks again!
