Aug 14 2020 03:23 AM - edited Aug 18 2020 03:34 AM
Greetings,
I'm having quite some issues trying to perfectly understand how Policy-based and Route-based VPNs work.
As we can se in the Azure documentation, for Policy-based VPNs, its important to keep the Traffic Selectors in sync in the Azure VPN and in the differents "On Prem VPN endpoints". Any changes to the architecture must be reflected in the Traffic Selectors of both ends of any connection in order to keep the traffic flowing.
But in the case of Route-based VPNs, what we do instead is we put a big star "*" in the Traffic Selectors of both ends the the connections, so there is no need to change them no more, even if the architecture changes, and we rely on the Route Tables the "configuration" of the VPN. These Route Tables will now be in charge of routing the traffic in&out our VNet1.
So far, so good. But now, questions start to pop.
Thank you in advance. This questions have been troubling my mind for a few days already and I'm having quite some trouble to find the answers online.
Yours sincerely,
Jorge