vnet网关虚拟设备路由 [英] vnet gateway virtual appliance routing
问题描述
你好, 多部分网络问题
hello, multi-part networking question
1.有没有一种方法可以将路由添加到指向虚拟设备下一跳的vnet网关?从我所见,不.
1. is there a way to add route to a vnet gateway that points to next-hop of a virtual appliance? from what I have seen, no.
2.azure 网关支持bgp到远程设备的对等连接,主要用于在Azure和本地Prem(您的本地网络)之间进行对等连接.远程设备对等的bgp是否必须位于异地?例如我可以创建一个bgp对等 在vnet网关和azure虚拟设备之间(例如vrouter)?
2.azure gateway supports bgp peering to a remote device, primarily intended for peering between azure and on-site prem (your local network). does this bgp to remote device peering have to be offsite? for example can I create a bgp peering between vnet gateway and an azure virtual appliance, example a vrouter?
3.与2相关(如果为2),则可以完成,可以通过专用vnet IP进行对等.例如,有一个vnet网关,其子网IP为20.0.1.1,并且在同一vnet 20.0.1.4中有一个虚拟设备.或因为vnet网关有一个公共的 IP和虚拟路由器具有公共IP,可以/必须在这些IP之间进行bgp对等吗?
3. related to two, if 2, can be done can the peering be done over the private vnet IP. example there's a vnet gateway with a subnet IP of 20.0.1.1, and there is a virtual appliance in the same vnet 20.0.1.4. or since the vnet gateway has a public IP and the virtual router has a public IP can/does a bgp peering have to be done between those IPs?
谢谢
推荐答案
你好,
1.最佳实践是不要将路由添加到网关子网中,这可能会阻止内部通信.但是,可以的,您可以定义一个路由表并与GatewaySubnet关联.流量将是一个循环.
1. The best practice is not to add routes to gateway subnet which might block the internal communication. But yes, you can define a route table and associate with the GatewaySubnet. The traffic flow will be a loop.
来自VNET中VM的流量击中了Vnet网关以将其移出,但UDR将其引导到虚拟设备,该虚拟设备又是VNET的一部分.
Traffic from a VM in a VNET hits the Vnet Gateway to move out but the UDR directs it to the Virtual appliance which is again a part of the VNET.
2. Azure vnet网关和Azure虚拟设备之间的对等关系将通过默认系统路由进行管理.除非您希望超越默认路线以实现最终目标,否则无需定义它.
2. The peering between Azure vnet gateway and a Azure virtual appliance would be managed by default system routes. You need not to define it unless you wish to over ride the default route to achieve your end goals.
3.公用IP将与数据中心外部的设备进行通信.由于20.0.1.1和20.0.1.4位于同一vnet中,因此它们通过默认系统路由进行通信.
3. The public IPs are to communicate with the devices outside the data center. As 20.0.1.1 and 20.0.1.4 locates in a same vnet, they communicate over the default system routes.
如果您有任何疑问,请告诉我.
Let me know if you have any queries.
谢谢.
这篇关于vnet网关虚拟设备路由的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
