Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,616 questions
Understand the routes propagation in Azure
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Apurva Pathak
635
Reputation points
Hi folks,
I want a bit of clarity around how 'route propagation' works in Azure and how does it affect different types of resources.
My current understanding is that if we have an expressroute gateway in place, we advertise all of our routes (Azure + On- Prem) at the expressroute level and the same gets propagated to our Vnet gateway in Azure.
Now, if we want same set of routes at our NICs, we just have to 'enable' the route propagation toggle in the Route Table configuration.
However, I recently have come across a situation which has put a question mark on my understanding.
Below are details and the ask:
- We follow Hub- Spoke architecture in our Azure with expressroute type Vnet gateway as Hubs and enabling us to connect to the On-Prem networks throughs expressroute Connections and Circuits.
- I have a vm in one of the Spoke Vnet (let's call it spokevm), and I have attached the rt to the Subnet of it by enabling the Route Propagation.
- I exported all of the routes which are being listed as 'Effective Routes' to that nic.
- I, then, exported list of all learned routes on the Vnet gateway (Type- expressroute) to which my vm's Vnet is peered with (with Az PowerShell Command Get-azVvrtualNetworkGatewaylearnedroute).
And here the confusion starts:
- I tried tracing the Next Hop to the address range of the different vm deployed in a different Spoke Vnet (let's call it destvm).
- When I searched for the Next Hop of the address range for the Vnet of destvm in the effective routes exported from my spokevm, it shows me a random IP address which I don't find anywhere in Azure (neither the address range).
- When I searched for the same address space in LearnedRoutes list, I found the Next Hop IP as the gatewaysubnet (which is quite obvious I guess?).
Pasting a chart below to visualize the results which I'm getting (have highlighted the different next hop ip is Cyan (or light blue).
Notes: 10.191--is the Subnet in which vnetgateway is deployed so that makes sense (to me).
But, from can't understand 10.2.--, from where is this IP coming?
Could someone please help me understand that:
- Why I see the difference in the next hop ip address in the effective routes of nic and the Vnetgateway learned routes.
- How the bgp propagated routes exactly works.
- How to track/ map the different routes being shown at the different resources in Azure.
Pasting a basic diagram below to understand the flow (and the ask)
Thanks much in advance!
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Ganesh Patapati 3,445 Reputation points Microsoft Vendor2025-01-24T22:19:43.19+00:00 Greetings!
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
It seems like a duplicate thread of https://learn.microsoft.com/en-us/answers/questions/2150741/understand-the-routes-propagation-in-azure
So, we will continue to work on this thread.
Regards,
Ganesh
Sign in to comment
Sign in to answer