Forum Discussion
Why do vpn/application gateways need to be in their subnet?
Normally in a network, your default gateway would be in the same subnet (well, mine is at least), but I can't figure out why azure requires your gateway needs to be in their own subnet, with like 3 s...
Azure requires VPN or application gateways to be in their own subnet because these gateways work as managed network appliances. The dedicated subnet keeps them isolated for security, management, and routing purposes. It allows Azure to control updates, avoid conflicts with user resources, and reserve IPs for scaling. This setup ensures stability and prevents interference with normal virtual machines in your network.