May 19 2019 05:24 AM
Hi Everyone.
I need an architecture model for Routing internet traffic from vnet A to Firewall which is in vnet B. Both vnets are in different region and connected by IPsec tunnel.
I have tried using two different UDR with below configurations:
UDR1:
Source: Subnet 1 of vnet A , destination: 0.0.0.0/0, Next hop: VPN Gateway of vnet A
UDR2:
source: Gateway subnet of vnet B, destination: 0.0.0.0/0, Next hop: firewall private IP.
but, it doesn't seems to be good solution.
May 20 2019 12:50 PM
May 20 2019 11:32 PM - edited May 20 2019 11:35 PM
Thxx@Hannes_LG ,
but in my scenario we have already an existing infra and having multiple basic internal load balancer.
If we go with global vnet peering, then we will have to update all basic internal load balancer to standard one because in global vnet peering we can't access frontend ip of internal load balancer of basic sku in peered region.
That's way I’m searching for another way.
May 21 2019 06:42 AM
May 24 2019 05:06 AM - edited May 24 2019 05:09 AM
Hi,
I can't share much of info, but for your understanding I have already mentioned all the information in my question. For internal communication (private traffic), traffic will go through IPsec tunnel. DMZ subnet is in vnet B, so we use UDR to route all internet traffic from vnet B to firewall ip in DMZ subnet but for vnet A internet traffic i need your help.
Jun 03 2019 12:49 PM