Azure Hub and Spoke Virtual Network (VNet) with a VPN Gateway

preview_player
Показать описание
In this video, we create a hub and spoke network in Azure by peering our spoke VNet’s to a centralized, Hub Virtual Network. Then we use a VPN Virtual Network Gateway to enable gateway transit connectivity between the spokes. Next, we configure routing with Azure Route Tables and User Defined Routes (UDR) to send traffic going to other spokes to the hub. Then we log into a virtual machine and verify connectivity.

00:00 - Start
03:22 - Create the Gateway
05:54 - Peer With the Gateway
08:36 - Configure the Routing Table
14:27 - Test Connectivity

Links:

  1. Travis Roberts
  2. VNet Peering
  3. VNet
  4. Peering
  5. Virtual Network
  6. IP
Рекомендации по теме
Azure Hub and 0:15:15

Azure Hub and Spoke Virtual Network (VNet) with a VPN Gateway

Hub-spoke virtual networks 0:44:34

Hub-spoke virtual networks in Azure - Bastiaan Wassenaar - NDC Oslo 2024

Virtual Network Manager 0:29:35

Virtual Network Manager - Hub and Spoke Network Topology Step-by-Step

Azure Firewall & 0:42:14

Azure Firewall & Hub | Create Hub-Spoke Network | AZ-305 | K21Academy

Microsoft Azure | 0:26:52

Microsoft Azure | Hub and Spoke Model in VNet | Session - 17

Azure - Hub 0:10:50

Azure - Hub and Spoke Deployment !!!

What is network 0:12:06

What is network hub and spoke architecture? Why we use it on aws, azure or google cloud ?

How to deploy 0:10:47

How to deploy a hub and spoke network | Deploying Virtual Machines | Pt 2

Azure Virtual WAN 0:18:22

Azure Virtual WAN Overview

Hub and Spoke 0:07:13

Hub and Spoke Network Topology A Cloud Guru

How it works: 0:07:05

How it works: Azure Virtual Networking Hub & Spoke Model

How to deploy 0:39:37

How to deploy a hub and spoke network | Creating Transitive Routing using Azure Firewall | Pt 4

8.Why we need 0:10:54

8.Why we need hub and spoke network architecture for Azure workloads

Azure Networking, User 0:21:24

Azure Networking, User Defined Routes, and Network Virtual Appliances

Azure Hub And 0:19:17

Azure Hub And Spoke: The Ultimate Azure Tutorial For Beginners 2023

Azure Virtual Network 1:02:56

Azure Virtual Network Manager Deep Dive

Step-by-Step: Deploying Azure 0:40:03

Step-by-Step: Deploying Azure Firewall in a Hub & Spoke Architecture

What is Hub 0:13:34

What is Hub and Spoke Network??||Vpc Network Peering||hub and spoke model||Azure Tutorial

Designing Microsoft Azure 0:18:50

Designing Microsoft Azure Virtual Networks

109. MS Azure 0:09:58

109. MS Azure Administrator Associate AZ 104 - Virtual WAN, Virtual hub, hub and spoke architecture

Azure Virtual Datacenter 0:07:29

Azure Virtual Datacenter (Hub & Spoke model)

An Introduction to 0:10:35

An Introduction to Virtual Network (VNet) Peering in Azure

Creating a hub 0:20:40

Creating a hub and spoke network in azure using terraform | Deploying Virtual Networks | Pt 1

How to deploy 0:14:33

How to deploy a hub and spoke network | Creating Azure Peering Connections | Pt 3

Комментарии
Автор

Amazing video. one of the best, shortest, for profession by profession videos... Most videos on this topic, insist on walking you over "what is a VNET". This get's to the point fast!

gpltaylor
Автор

as always, brilliant and to the point introduction. Thanks

Wilhelmcook
Автор

Thank you so much for this video. This was one question during my interview few days ago. Also I didn’t understand what exactly is ‘hop’ which makes sense now from this video. Thank you Sir..

neeharikagv
Автор

Great video, I did not know one could use a VPN Gateway as a router. Having said that, regarding what you said about being complicated by the need to create a route table per vnet, if you are using a third party NVA in the Hub network, you can create only one route table with the default route pointing to NVA ip address. Then this could make things much simpler. Of course you need the proper configuration on the NVA itself.

SOTOSKAWASAKI
Автор

Thank you so much for putting this together. I have been trying to figure out my vnet to s2s vnet routing for hours and could only find resources talking about azure vnet to vnet, but you talking about route table made it all click! Duh! Why didn't I think, "I wonder if there is a route table"

tog
Автор

Awesome ! You make everything look so simple. That is Great !!! 🙂 Thank you May God bless you.

smeyyappan
Автор

Very helpful video, thank you! Is there any way that allows automatic route adding in the route tables? That would make the process much simpler for large scale solutions.

AAhmed_Alii
Автор

liked the video right from the first few seconds of introduction, great

tendaimusonza
Автор

Great video, thanks. Now, the same video but a Azure Firewall, please.

joaquincotilla
Автор

Great Videos man 🙌🙌🙌🙌🙌 continue doing the Lord's work.... Can you do something on Azure Landing Zone?

peacejon
Автор

Great video. Is it possible to connect spoke1 to spoke2 without UDR or direct peering?

bloknath
Автор

hi Travis, Excellent explanation. I have created a similar setup with 2 Spoke and 1 Hub networks in Azure. I have couple of queries,
1. I created RouteTable1 and assigned it to Spoke-1. Added a route to access Spoke-2 network via Hub VNET. Ideally, I should be able to ping the VM-2 from VM-1 since there is a route established from Spoke-1 and Spoke-2 network. But, I am unable to achieve. Unless I add RT-2 assigned to Spoke-2 VNET and add a route to access Spoke-1 VNET, then, I am able to access both VMs (ping each other). Why is it so?
2. After performing step (1), I went to Spoke-1 Peering (wtih Hub) and Disable the option "Allow 'vnet-1' to receive forwarded traffic from 'vnet-hub'". Ideally, this will stop traffic flow from Spoke-2 to Spoke-1 (VMs). But, I see the VM-2 is still able to reach to VM-1. Why?
Thanks.

omega
Автор

Thanks for the video, is there a difference between configuring the peering from the HUB ? otherwise why you choose to create the peering from Spoke to peering ?

mradbilel
Автор

Hi Travis, I want to use a point-to-site vpn tunnel with vpn gateway to connect to four different azure subscriptions. What would be my best approach. Also I don't want these resources to share any data or connectivity with other subscriptions like dev and prod.

roneyr
Автор

Short and lot of details. Thanks a lot. I have an issue. I have hub and spoke model. i have a vm in hub and a vm in spoke. i use point to site. The issue is, i am able to RDP the vm on Hub but not able to control/RDP the vm on Spoke. Both the vnet's are peered. What could be the issue?

kannanswaminathan
Автор

Wouldn't this cause delay because the traffic goes from the virtual network to other virtual network through the hub each time ? And this would get worst with any additional virtual network added to the system?

sushantKarki-wk
Автор

Are you using VPN gateway as cost effective example for VWAN over S2S or ER?

prasantchettri
Автор

Morning Travis! can I ask why you dont recommend this for production? in terms of using the Gateway for the transitive routing as I use a similar set up in my production environment thank in advance

AndyRichardson-hh
Автор

Hi Travis, what about this scenario ? hub and spoke1 have own vnet gateway. how to set the route table ? i tried set it next hop to virtual network gateway, it's not connected.

stevenaudy
Автор

what virtual machine are you using sir?

fortu