Hi there! Great video. Just one correction - the address space for the Azure Virtual WAN doesn't need to be large, it's used for all the appliances (e.g VNG S2S, VNG P2S, Expressroute, FW). Most orgs would probably only need a /24. I think the biggest problem for people moving to Azure VWAN, will be migrating existing Hub-Spoke setups. VWAN does not let you peer a network that already uses another peer for gateway transit, meaning if you had a VNG with VPNs for instance - you're going to need to migrate the VPNs off first before you can break the gateway transit option. I understand why MS have done this, but it would mean migrating would be made so much more simple.
Using VWAN is more expensive then doing the setup manually in a hub&spoke model but so much simpler, especially in a multi region scenario. Good job on that video 👍🏼
Thanks Charles! I hear ya on the cost side...have you looked into Azure Virtual Network Manager? Not exactly the same as VWAN, but you get centralized network management and security 👉 ruclips.net/video/3IkjJDw6mA0/видео.html
Thank you for another excellent video. It would be highly appreciated if you could provide insights on setting up P2S for a common internet breakout scenario where multiple devices get into Azure VNET via P2S but intend to go to internet using a single static IP address. This is a frequently searched topic, and there is a scarcity of specific and comprehensive content available. Your guidance on this would be invaluable.
So to be clear...you have a user on a laptop using a P2S client to log onto a VM in Azure. Now that they are on that VM the user wants to go to the internet and you want all that user traffic to funnel into a single outgoing IP address? The answer is simple...and already done...Azure NAT Gateway. Check it out here 👉ruclips.net/video/yghrkFzaYTU/видео.html
I would luv to find a video explaining how to setup a simple cloud network environment with 17 users and a shared data drive - nothing fancy We r currently paying several thousands a month to Abacus Private Cloud (now called Caret) to manage our cloud network - they recently offshored support so now hard to understand and far less knowledgeable - We r very very desperate to get away from Abacus/Caret as we have problems with their systems almost everyday. Our VMs host Quickbooks, Lacerte Tax, OfficeTools (rickety & clucky) and 365 Would it b possible to setup a 17 user cloud network with Windows 365? If so, would u please do a how to? AVD & Nerdio seems too complex for a small accounting office
Actually NO. You can "adopt" the existing VNETs Spokes into your VWAN Hub...that is what I showed in the video. Now depending on what resources you have in your current hub...how hard it is can depend. Example: You have a Standard Azure Firewall. Its not too bad. Convert the Firewall to Azure Policy based then make your VWAN Hub a Secure Hub...then use the Azure policy file you just generated. Want to know how to do this...watch this video 👉 ruclips.net/video/GrOz2Le9VZ0/видео.html
@@AzureAcademy Excellent! We are using Azure Firewall premium and we are wanting to migrate from a 3rd party SDWAN to Azure VWAN, so this looks like a good path for us to take. Now I just need to work out how to move the existing ExpressRoute over to VWAN too.
Can i connect two vwan across tenant and restrict route exchange between them . We dont want this vwan advertising default route to each other and create mess . Thanks
My first question would be…why would you connect them together if you don’t want them to share routing…that is a primary function of VWan? 2nd yes you can do route exclusions
@@AzureAcademy there is separation of a company from it's parent company and we have to separate azure infrastructure by creating in new tenant but still want to have connectivity with existing tenant for accessing any service which are not migrated yet .we will be connecting two tenant via cross tenant but Microsoft says when you connect two vwan they tend to advertise default route . If you can share any link it will be helpful
Hi there! Great video. Just one correction - the address space for the Azure Virtual WAN doesn't need to be large, it's used for all the appliances (e.g VNG S2S, VNG P2S, Expressroute, FW). Most orgs would probably only need a /24.
I think the biggest problem for people moving to Azure VWAN, will be migrating existing Hub-Spoke setups. VWAN does not let you peer a network that already uses another peer for gateway transit, meaning if you had a VNG with VPNs for instance - you're going to need to migrate the VPNs off first before you can break the gateway transit option. I understand why MS have done this, but it would mean migrating would be made so much more simple.
Thanks for sharing!
Using VWAN is more expensive then doing the setup manually in a hub&spoke model but so much simpler, especially in a multi region scenario. Good job on that video 👍🏼
Thanks Charles! I hear ya on the cost side...have you looked into Azure Virtual Network Manager? Not exactly the same as VWAN, but you get centralized network management and security 👉 ruclips.net/video/3IkjJDw6mA0/видео.html
thank you sir - i learned some stuff here
Glad to hear it
i just realised this dude is actually really good at powerpoint presentations
I don’t know if I should feel complimented or insulted 🤣
@@AzureAcademy i watched alot of your videos, this was the first time i noticed the clicker for the powershell presentation:p
Oh that…yeah, no PowerPoint on my channel it’s for my teleprompter so I can look right at the camera while I’m talking ☺️
Great video, it is impressive how you manage to explain complex content in a quick and simple way. I am learning a lot from you. Thank you.
Thanks! What is the next thing you want to learn?
Thanks Dean, good to know re Azure vWan, detailed video
Thanks Andrew!
I Love Virtual Wan, so powerful :)
It is very cool
Thank you for another excellent video. It would be highly appreciated if you could provide insights on setting up P2S for a common internet breakout scenario where multiple devices get into Azure VNET via P2S but intend to go to internet using a single static IP address. This is a frequently searched topic, and there is a scarcity of specific and comprehensive content available. Your guidance on this would be invaluable.
So to be clear...you have a user on a laptop using a P2S client to log onto a VM in Azure. Now that they are on that VM the user wants to go to the internet and you want all that user traffic to funnel into a single outgoing IP address?
The answer is simple...and already done...Azure NAT Gateway. Check it out here 👉ruclips.net/video/yghrkFzaYTU/видео.html
Thanks!
You bet, thanks for the support!
great video
Thanks!
I would luv to find a video explaining how to setup a simple cloud network environment with 17 users and a shared data drive - nothing fancy
We r currently paying several thousands a month to Abacus Private Cloud (now called Caret) to manage our cloud network - they recently offshored support so now hard to understand and far less knowledgeable - We r very very desperate to get away from Abacus/Caret as we have problems with their systems almost everyday.
Our VMs host Quickbooks, Lacerte Tax, OfficeTools (rickety & clucky) and 365
Would it b possible to setup a 17 user cloud network with Windows 365? If so, would u please do a how to? AVD & Nerdio seems too complex for a small accounting office
Sounds painful. Yes it’s possible but we should talk further for all requirements
Email me so we can setup a time to talk ☺️
What happens when you have multiple hubs? Can a vnet in one hub communicate with a vnet in another?
Great question…This gets into something called route intent…I have an up coming video on this. Short answer is yes
not getting into details.
This is an intro video and how to create VWAN, Which details did I miss?
Looks great, but wouldn’t it be tricky to transition from an existing hub and spoke topology to this?
Actually NO. You can "adopt" the existing VNETs Spokes into your VWAN Hub...that is what I showed in the video. Now depending on what resources you have in your current hub...how hard it is can depend. Example: You have a Standard Azure Firewall. Its not too bad. Convert the Firewall to Azure Policy based then make your VWAN Hub a Secure Hub...then use the Azure policy file you just generated.
Want to know how to do this...watch this video 👉 ruclips.net/video/GrOz2Le9VZ0/видео.html
@@AzureAcademy Excellent! We are using Azure Firewall premium and we are wanting to migrate from a 3rd party SDWAN to Azure VWAN, so this looks like a good path for us to take. Now I just need to work out how to move the existing ExpressRoute over to VWAN too.
The express route gateway and circuit generally won’t change but you will need to update the connection to your ISP
@@AzureAcademy ok thanks
👍👍
Can i connect two vwan across tenant and restrict route exchange between them . We dont want this vwan advertising default route to each other and create mess .
Thanks
My first question would be…why would you connect them together if you don’t want them to share routing…that is a primary function of VWan? 2nd yes you can do route exclusions
@@AzureAcademy there is separation of a company from it's parent company and we have to separate azure infrastructure by creating in new tenant but still want to have connectivity with existing tenant for accessing any service which are not migrated yet .we will be connecting two tenant via cross tenant but Microsoft says when you connect two vwan they tend to advertise default route . If you can share any link it will be helpful
If there is a solution I think it’s route intent
learn.microsoft.com/en-us/azure/virtual-wan/how-to-routing-policies