I'm working with Azure and trying to figure out if I can apply User Defined Route (UDR) rules to a virtual network (VNet) that uses gateway transit. My goal is to direct traffic from on-premises to a firewall in Azure, but it's not working as expected. So far, everything runs smoothly when not using UDR rules, especially since these VNets are linked through peerings and configured with gateway transit. However, as soon as I attempt to implement UDR rules to reroute traffic through the gateway transit, things stop functioning. Does anyone know if it's actually possible to use UDRs in this setup?
2 Answers
Yes, you can use UDRs, but it's a bit more complex than just applying them. From what you've described, it sounds like you might be facing asymmetric traffic issues. Essentially, the subnet you're targeting needs to be able to return traffic using the same route. This might mean you need to adjust your return routes accordingly. Check out the Microsoft documentation, it can provide some insight into how Azure selects routes for traffic.
Absolutely, but you've got to dig into the MSFT docs because it’s not super straightforward. Just to clarify, UDRs allow routing control between subnets and VNets, but when dealing with traffic through a gateway transit, there are some limitations. You can’t redirect gateway transit traffic that's coming from a peered VNet to the internet or on-premises using UDRs. They can help manage traffic within a VNet or to NVA appliances, but not for the gateway transit traffic specifically.
Related Questions
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads