Multiple site2site VPN bewteen virtual wan hub and one on-premise site to extend bandwidth

Thomas Wollnik 21 Reputation points
2021-05-11T05:14:32.97+00:00

At the moment we are using 2 VPN Tunnels (active/active) between the Azure VPN GW and the on-premise network. Inside the tunnels BGP is used for Equal Cost Multipathing. This results in about 1.8 Gbit/s usable Bandwidth.

There is need for more Bandwidth now.
Ive checked the virtual wan hub product and I am wondering if it is possible to deploy and mange multiple active/active VPNs to one on-premise site with it.

The aim ist to maximize overall VPN bandwidth (>3Gbit/s) but also keep the solution manageable from an operational point of view.

Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
187 questions
Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,379 questions
0 comments
Accepted answer
  1. SaiKishor-MSFT 17,186 Reputation points
    2021-05-12T22:35:08.737+00:00

    anonymous user Thanky ou for reaching out to Microsoft Q&A.

    I understand that you want to enable multiple VPN connections from your on-premise to Azure Vnet to increase the VPN BW.

    This is possible if you have an additional Public IP on your on-premise which can be used as another local gateway and setup another VPN using that Public IP between your on-premise and Azure. Then you can advertise the same networks over this VPN using BGP and do ECMP as well. This should then route traffic through all the four tunnels. Hope this helps.

    Please let us know if you have any further questions and we will be glad to assist you further. Thank you!

    Remember:

    Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.

    Want a reminder to come back and check responses? Here is how to subscribe to a notification.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. TravisCragg-MSFT 5,676 Reputation points Microsoft Employee
    2021-05-12T22:48:39.827+00:00

    Going to an Azure VWAN could be helpful especially if you increase your regional Azure footprint, but if you are just looking for increased throughput for a single Virtual Network, there are several limits you might be hitting.

    First off, if you require a high throughput low-latency connection, consider using Azure ExpressRoute.

    Azure VPN Gateways also have limited throughput, and this is shared across all connections (both P2S and S2S) coming through the gateway. The SKU of the gateway determines the amount of available throughput for the gateway, and the cost of the gateway.

    For your Azure VWAN question - I believe this is possible, and it is described Here (but connects to 2 different ISP connections at the same site). This is likely something that you can set up a Proof of Concept (as all of this is virtual) for your own testing to see if this will work for your scenario, and if you see an increase in VPN throughput.

    2 people found this answer helpful.