How to configure virtual hub routing
A virtual hub can contain multiple gateways such as a Site-to-site VPN gateway, ExpressRoute gateway, Point-to-site gateway, and Azure Firewall. The routing capabilities in the virtual hub are provided by a router that manages all routing, including transit routing, between the gateways using Border Gateway Protocol (BGP). This router also provides transit connectivity between virtual networks that connect to a virtual hub and can support up to an aggregate throughput of 50 Gbps. These routing capabilities apply to Standard Virtual WAN customers.
For more information, see About virtual hub routing.
Create a route table
In the Azure portal, navigate to the virtual hub.
Under Connectivity, select Routing. On the Routing page, you see the Default and None route tables.
Select +Create route table to open the Create Route Table page.
On the Create Route Table page Basics tab, complete the following fields.
Destination prefix: You can aggregate prefixes. For example: VNet 1: 10.1.0.0/24 and VNet 2: 10.1.1.0/24 can be aggregated as 10.1.0.0/16. Branch routes apply to all connected VPN sites, ExpressRoute circuits, and User VPN connections.
Next hop: A list of virtual network connections, or Azure Firewall.
If you select a virtual network connection, you will see Configure static routes. This is an optional configuration setting. For more information, see Configuring static routes.
Select the Labels tab to configure label names. Labels provide a mechanism to logically group route tables.
Select the Associations tab to associate connections to the route table. You will see Branches, Virtual Networks, and the Current settings of the connections.
Select the Propagations tab to propagate routes from connections to the route table.
Select Create to create the route table.
To edit a route table
In the Azure portal, locate the route table of your virtual hub. Select the route table to edit any information.
To delete a route table
In the Azure portal, locate the route table of your virtual hub. You cannot delete a Default or None route table. However, you can delete all custom route tables. Click "…", and then select Delete.
To view effective routes
In the Azure portal, locate the route table of your virtual hub. Click "…" and select Effective Routes to view routes learned by the selected route table. Propagated routes from the connection to the route table are automatically populated in Effective Routes of the route table. For more information, see About effective routes.
To set up routing configuration for a virtual network connection
- In the Azure portal, navigate to your virtual WAN and, under Connectivity, select Virtual Network Connections.
- Select +Add connection.
- Select the virtual network from the dropdown.
- Set up the routing configuration to associate to a route table. For Associate Route Table, select the route table from the dropdown.
- Set up the routing configuration to propagate to one or many route tables. For Propagate to Route Table, select from the dropdown.
- For Static routes, configure static routes for Network Virtual Appliance (if applicable). Virtual WAN supports a single next hop IP for static route in a virtual network connection. For example, if you have a separate virtual appliance for ingress and egress traffic flows, it would be best to have the virtual appliances in separate VNETs and attach the VNETs to the virtual hub.