I'm trying to figure out a way to send traffic from my VNETA to VNETD. VNETA is peered with VNETB, which has an Azure firewall. Then, VNETB is peered with VNETC, and finally, VNETC is peered with VNETD. I can't create any direct peerings, so I'm restricted to the existing setup. Also, I want to note that VNETD has its own firewall. Is there a way to achieve this?
5 Answers
You might run into some design issues, but as long as VNETB and VNETC can handle routing, it could work. Just make sure you have the right Network Virtual Appliances (NVAs) in place for routing traffic effectively.
For this setup, VNETC needs something like a firewall or a routing solution. Without that, VNets can't really handle transit traffic on their own. Have you thought about deploying a firewall in VNETC? If you do, you'll have to set up User Defined Routes (UDRs) as well.
You definitely need a way for VNETC to forward traffic. An additional firewall would be the best solution, even though it can get pricey. It's usually recommended to set up a hub-and-spoke model, where VNETA, VNETC, and VNETD are all peered with VNETB, allowing all traffic to flow through the firewall. What's the reason behind your current design?
Consider using Private Link! It might help facilitate the traffic flow you're trying to achieve.
If you're looking for transit capabilities, combining with Azure Route Server or a route table might be your best shot.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures