Your trusted source for Azure Cloud information
Virtual Network Gateway is a critical component in Azure's networking suite, providing secure and reliable connectivity between your Azure virtual network and on-premises locations. In this blog post, we'll explore the key features and limitations of Virtual Network Gateway, giving you a comprehensive understanding of its capabilities.
Virtual Network Gateway supports both VPN and ExpressRoute connections, allowing you to choose the best option for your specific needs. VPN Gateway enables encrypted traffic over the public internet, while ExpressRoute provides a private connection for enhanced security and performance.
One of the standout features is the support for dual stack IPv4 and IPv6, which allows for seamless integration with modern network environments. This feature is particularly useful for organizations transitioning to IPv6.
Virtual Network Gateway offers various SKUs, including Standard, HighPerformance, and UltraPerformance, each providing different levels of throughput and capabilities. This flexibility ensures that you can select the appropriate SKU based on your workload and performance needs.
Despite its robust feature set, Virtual Network Gateway has some limitations that you should be aware of. For instance, moving a gateway to a different resource group or subscription is not supported. To move a gateway, you must delete the current instance and recreate it in the new resource group or subscription.
Network filtering rules for non-TCP/UDP protocols (e.g., ICMP) do not work for Internet-bound traffic. This limitation can impact scenarios where non-TCP/UDP protocols are required for communication.
Azure PowerShell and CLI currently do not support ICMP as a valid protocol in network rules. While it is possible to use ICMP via the portal and REST API, this limitation can be inconvenient for users who prefer scripting.
Virtual Network Gateway offers a robust set of features that enhance network security and management. However, it is important to be aware of its limitations to ensure that it meets your specific needs. By understanding both the strengths and weaknesses of Virtual Network Gateway, you can make informed decisions about how to best utilize this powerful networking service.
For more detailed information, please visit our Azure Firewall Features and Limitation page.