question

dalemagna avatar image
0 Votes"
dalemagna asked AmitaMenon-3691 edited

WVD network topology

Our WVD architecture is based on a Forced Tunneling scenario. An Azure Route (UDR) 0.0.0.0/0 points to an Azure Fortigate firewall.

Internet traffic flows these hops:

  • WVD Host Pools

  • FortiGate firewall hosted on Azure

  • Virtual Network Gateway hosted on Azure

  • Site-To-Site VPN Tunnel

  • FortiGate Firewall hosted On-Premise

  • Internet

I created an additional Azure Route (UDR), to differentiate the KMS traffic and to send this triffic directly to Internet



To permit the WVD VMs to operate in absence of the On-Premise Firewall (DR scenario) I would like to create a rule to send the the traffic directed to *.wvd.microsoft.com directly to Internet.

Can I use an Azure Firewall or other Azure service to differentiate the traffic directed to *.wvd.microsoft.com and send it directly to Internet?



Thanks

azure-virtual-desktopazure-virtual-networkazure-virtual-machines-networking
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@dalemagna Any updates on the issue?

Please 'Accept as answer' if it helped, so that it can help others in the community looking for help on similar topics

0 Votes 0 ·

1 Answer

prmanhas-MSFT avatar image
0 Votes"
prmanhas-MSFT answered

@dalemagna Apologies for the delay in response.


One of the way to avoid the problem of setting hostname manually is to use Azure DNS. You can create an azure DNS entry for specific private network (with entries which you are creating on the host directly) and then associate the Azure web-jobs to this private network.


Using this mechanism, you can avoid creating DNS entries and manage the entries from central place.


Web-jobs when run in these private network would use the DNS entries configured to fetch the DNS mapping. You can read more about Azure DNS from here .



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.