![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 71%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM3%3C/text%3E%3C/svg%3E)
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,608 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 81%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Hi @Martinmajestic-3285,
Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.
- You can use Azure Firewall in a hub virtual network to route and filter traffic between multiple spoke virtual network. Subnets in each of the spoke virtual networks must have a UDR pointing to the Azure Firewall as a default gateway for this scenario to work properly.
- Reference: https://learn.microsoft.com/en-us/azure/firewall/firewall-faq#can-azure-firewall-in-a-hub-virtual-network-forward-and-filter-network-traffic-between-multiple-spoke-virtual-networks
- Regarding Azure site-to-site, please follow the Microsoft document and go to the Vnet (which has a VPN Gateway) and configure VNET Peering between VNet1(which has a VPN Gateway) and VNet2 (VM).
- Please use the below screenshots for your reference:
- Also, we need to configure a static route for Vnet 2 (VM) from On-Prem server end. The static route needs to contain both VNet1(which has a VPN Gateway) and VNet2 (VM). pointing towards the same NIC.
- Please make sure that there is no IP overlapping between VNets.
If above is unclear and/or you are unsure about something add a comment below.
Please don’t forget to close the thread by clicking "Accept answer" wherever the information provided helps you, as this can be beneficial to other community members.
Thanks,
Sai.