redundant VPN connections over Expressroute private peering

MatB

3/16/24, 9:35 AM

I have configured redundant VPN connections over expressroute private peering with private IPs. BGP is configured making router 2 backup using BGP as-path. Wondering how the traffic is sent back to on-prem routers there is active-passive configuration but it seems there is packet loss from Azure to on-prem. Effective routes on a nic in a VNet shows VPN-GW public IP as next hop. How is traffic forwarded to next-hop from there? Fear it is only ECMP? Attaching topology. enter image description here @kapilananth-MSFT

0 + 2

site-to-site-vpn

azure

azure-networking

Greg Askew

3/20/24, 1:56 PM

`packet loss from Azure to on-prem`. What throughput are we talking about?

MatB

4/20/24, 12:53 PM

There are just a few kbs sent on the backup tunnel from Azure side which are enough to cause problems. I have tested that this happens when LNG1 and LNG2 have same on-prem address space. I have tried to make LNG2 Address space more bigger so that LNG1 is preferred, but in that case failover does not work at all.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: redundant VPN connections over Expressroute private peering

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.