Create a hub and spoke topology with Azure Virtual Network Manager (Preview)

  • Article
  • 3 minutes to read

In this article, you'll learn how to create a hub and spoke network topology with Azure Virtual Network Manager. With this configuration, you select a virtual network to act as a hub and all spoke virtual networks will have bi-directional peering with only the hub by default. You also can enable direct connectivity between spoke virtual networks and enable the spoke virtual networks to use the virtual network gateway in the hub.

Important

Azure Virtual Network Manager is currently in public preview. This preview version is provided without a service level agreement, and it's not recommended for production workloads. Certain features might not be supported or might have constrained capabilities. For more information, see Supplemental Terms of Use for Microsoft Azure Previews.

Prerequisites

Create a network group

This section will help you create a network group containing the virtual networks you'll be using for the hub-and-spoke network topology.

  1. Go to your Azure Virtual Network Manager instance. This how-to guide assumes you've created one using the quickstart guide.

  2. Select Network groups under Settings, and then select + Add to create a new network group.

    Screenshot of add a network group button.

  3. On the Basics tab, enter a Name and a Description for the network group.

    Screenshot of basics tab for add a network group.

  4. To add virtual network manually, select the Static group members tab. For more information, see static members.

    Screenshot of static group members tab.

  5. To add virtual networks dynamically, select the Conditional statements tab. For more information, see dynamic membership.

    Screenshot of conditional statements tab.

  6. Once you're satisfied with the virtual networks selected for the network group, select Review + create. Then select Create once validation has passed.

Create a hub and spoke connectivity configuration

This section will guide you through how to create a hub-and-spoke configuration with the network group you created in the previous section.

  1. Select Configuration under Settings, then select + Add a configuration.

    Screenshot of the configurations list.

  2. Select Connectivity from the drop-down menu.

    Screenshot of configuration drop-down menu.

  3. On the Add a connectivity configuration page, enter, or select the following information:

    Screenshot of add a connectivity configuration page.

    Setting Value
    Name Enter a name for this configuration.
    Description Optional Enter a description about what this configuration will do.
    Topology Select the Hub and spoke topology.
    Hub Select a virtual network that will act as the hub virtual network.
    Existing peerings Select this checkbox if you want to remove all previously created VNet peering between virtual networks in the network group defined in this configuration.

  4. Then select + Add network groups.

  5. On the Add network groups page, select the network groups you want to add to this configuration. Then select Add to save.

  6. You'll see the following three options appear next to the network group name under Spoke network groups:

    Screenshot of spoke network groups settings.

    • Direct connectivity: Select Enable peering within network group if you want to establish VNet peering between virtual networks in the network group of the same region.
    • Global Mesh: Select Enable mesh connectivity across regions if you want to establish VNet peering for all virtual networks in the network group across regions.
    • Gateway: Select Use hub as a gateway if you have a virtual network gateway in the hub virtual network that you want this network group to use to pass traffic to on-premises.

    Select the settings you want to enable for each network group.

  7. Finally, select Add to create the hub-and-spoke connectivity configuration.

Deploy the hub and spoke configuration

To have this configuration take effect in your environment, you'll need to deploy the configuration to the regions where your selected virtual network are created.

  1. Select Deployments under Settings, then select Deploy a configuration.

  2. On the Deploy a configuration select the following settings:

    Screenshot of deploy a configuration page.

    Setting Value
    Configuration type Select Connectivity.
    Configurations Select the name of the configuration you created in the previous section.
    Target regions Select all the regions that apply to virtual networks you select for the configuration.

  3. Select Deploy and then select OK to commit the configuration to the selected regions.

  4. The deployment of the configuration can take up to 15-20 minutes, select the Refresh button to check on the status of the deployment.

Confirm deployment

  1. See view applied configuration.

  2. To test direct connectivity between spokes, deploy a virtual machine into each spokes virtual network. Then initiate an ICMP request from one virtual machine to the other.

Next steps