Share via

Why do zone-redundant and non-zone-redundant VPN Gateways have the same SLA?

Antti Keskinen 40 Reputation points
2025-01-29T09:28:17.6266667+00:00

Hi all,

According to the document at https://www.microsoft.com/licensing/docs/view/Service-Level-Agreements-SLA-for-Online-Services?lang=1 the "Virtual Network Gateway" on page 95 has the same SLA regardless of whether it is zone-redundant (e.g. "VpnGw1AZ") or non-zone-redundant (e.g. "VpnGw1"). Only the "Basic" SKU has lower SLA compared to others.

On the pricing page (https://azure.microsoft.com/en-us/pricing/details/vpn-gateway/) these two options have a different price, and the zone-redundant version even advertises higher availability and resiliency. However, the SLA document does not reflect this in any way. Why is that?

I am aware that the non-zone-redundant versions are being phased out this year, and migrated to zone-redundant ones. That is besides the point.

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,632 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,616 questions
Accepted answer
  1. Ganesh Patapati 3,445 Reputation points Microsoft Vendor
    2025-01-30T22:57:31.96+00:00

    Hello Antti Keskinen

    We apologize for the inconvenience caused to you.

    zone-redundant virtual network gateway in Azure availability zones. This brings resiliency, scalability, and higher availability to virtual network gateways. Deploying gateways in Azure availability zones physically and logically separates gateways within a region, while protecting your on-premises network connectivity to Azure from zone-level failures.

    Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/about-zone-redundant-vnet-gateways

    1. The SLA document specifies a 99.95% uptime percentage for both zone-redundant and non-zone-redundant gateways but gateway's capability to handle traffic, rather than the redundancy or availability of the underlying infrastructure. Therefore, the SLA emphasizes the gateway's performance and uptime.
    2. The SLA is a guarantee of the minimum 99.95% uptime percentage, which is the same for both zone-redundant and non-zone-redundant gateways. while zone-redundant gateways offering higher availability and resiliency at a higher cost.
    3. As you noted, Microsoft is discontinuing non-zone-redundant gateways and transitioning customers to zone-redundant gateways. This change is likely due to the advantages offered by zone-redundant gateways, such as enhanced availability and resiliency.
    4. The SLA document focuses on the uptime percentage and performance of the gateway, while the pricing page reflects the value provided by each type of gateway, including the additional cost of zone-redundant gateways.

    Hope this helps!

    Please let me know if you have any additional questions. Thank you!

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.