You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/virtual-network-manager/how-to-create-hub-and-spoke.md
+8-14Lines changed: 8 additions & 14 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ author: mbender-ms
5
5
ms.author: mbender
6
6
ms.service: azure-virtual-network-manager
7
7
ms.topic: how-to
8
-
ms.date: 06/20/2024
8
+
ms.date: 10/23/2024
9
9
ms.custom: template-concept, engagement-fy23
10
10
---
11
11
@@ -44,20 +44,17 @@ To manually add the desired virtual networks for your Mesh configuration to your
44
44
:::image type="content" source="./media/create-virtual-network-manager-portal/add-virtual-networks.png" alt-text="Screenshot of add virtual networks to network group page.":::
45
45
46
46
1. To review the network group membership manually added, select **Group Members** on the *Network Group* page under **Settings**.
47
-
:::image type="content" source="media/create-virtual-network-manager-portal/group-members-list.png" alt-text="Screenshot of group membership under Group Membership." lightbox="media/create-virtual-network-manager-portal/group-members-list.png":::
47
+
48
+
:::image type="content" source="./media/how-to-create-hub-and-spoke/group-members-list.png" alt-text="Screenshot that shows a list of group members.":::
48
49
49
50
## Create a hub and spoke connectivity configuration
50
51
51
52
This section guides you through how to create a hub-and-spoke configuration with the network group you created in the previous section.
52
53
53
54
1. Select **Connectivity configuration** from the drop-down menu to begin creating a connectivity configuration.
54
55
55
-
:::image type="content" source="./media/create-virtual-network-manager-portal/connectivity-configuration-dropdown.png" alt-text="Screenshot of configuration drop-down menu.":::
56
-
57
56
1. On the **Basics** page, enter the following information, and select **Next: Topology >**.
58
57
59
-
:::image type="content" source="./media/create-virtual-network-manager-portal/connectivity-configuration.png" alt-text="Screenshot of add a connectivity configuration page.":::
60
-
61
58
| Setting | Value |
62
59
| ------- | ----- |
63
60
| Name | Enter a *name* for this configuration. |
@@ -67,7 +64,7 @@ This section guides you through how to create a hub-and-spoke configuration with
67
64
68
65
:::image type="content" source="media/how-to-create-hub-and-spoke/topology.png" alt-text="Screenshot of Add Topology screen for hub and spoke topology.":::
69
66
70
-
1. Select **Delete existing peerings** checkbox if you want to remove all previously created VNet peering between virtual networks in the network group defined in this configuration, and then select **Select a hub**.
67
+
1. Select **Delete existing peerings** checkbox if you want to remove all previously created virtual network peering between virtual networks in the network group defined in this configuration, and then select **Select a hub**.
71
68
1. On the **Select a hub** page, Select a virtual network that acts as the hub virtual network and select **Select**.
72
69
73
70
:::image type="content" source="media/how-to-create-hub-and-spoke/select-hub.png" alt-text="Screenshot of Select a hub list.":::
@@ -81,8 +78,8 @@ This section guides you through how to create a hub-and-spoke configuration with
81
78
:::image type="content" source="./media/how-to-create-hub-and-spoke/spokes-settings.png" alt-text="Screenshot of spoke network groups settings.":::
82
79
83
80
84
-
**Direct connectivity*: Select **Enable peering within network group** if you want to establish VNet peering between virtual networks in the network group of the same region.
85
-
**Global Mesh*: Select **Enable mesh connectivity across regions** if you want to establish VNet peering for all virtual networks in the network group across regions.
81
+
**Direct connectivity*: Select **Enable peering within network group** if you want to establish virtual network peering between virtual networks in the network group of the same region.
82
+
**Global Mesh*: Select **Enable mesh connectivity across regions** if you want to establish virtual network peering for all virtual networks in the network group across regions.
86
83
**Gateway*: Select **Use hub as a gateway** if you have a virtual network gateway in the hub virtual network that you want this network group to use to pass traffic to on-premises.
87
84
88
85
Select the settings you want to enable for each network group.
@@ -105,12 +102,9 @@ To have this configuration take effect in your environment, you need to deploy t
105
102
| Target regions | Select all the regions that apply to virtual networks you select for the configuration. |
106
103
107
104
1. Select **Next** and then select **Deploy** to complete the deployment.
108
-
109
-
:::image type="content" source="./media/create-virtual-network-manager-portal/deployment-confirmation.png" alt-text="Screenshot of deployment confirmation message.":::
110
-
111
105
1. The deployment displays in the list for the selected region. The deployment of the configuration can take a few minutes to complete.
112
106
113
-
:::image type="content" source="./media/create-virtual-network-manager-portal/deployment-in-progress.png" alt-text="Screenshot of configuration deployment in progress status.":::
107
+
:::image type="content" source="./media/how-to-create-hub-and-spoke/deployment-succeeded.png" alt-text="Screenshot of configuration deployment in progress status.":::
114
108
115
109
> [!NOTE]
116
110
> If you're currently using peering and want to manage topology and connectivity with Azure Virtual Network Manager, you can migrate without any downtime to your network. Virtual network manager instances are fully compatible with pre-existing hub and spoke topology deployment using peering. This means that you won't need to delete any existing peered connections between the spokes and the hub as the network manager will automatically detect and manage them.
@@ -124,4 +118,4 @@ To have this configuration take effect in your environment, you need to deploy t
124
118
## Next steps
125
119
126
120
- Learn about [Security admin rules](concept-security-admins.md)
127
-
- Learn how to block network traffic with a [SecurityAdmin configuration](how-to-block-network-traffic-portal.md).
121
+
- Learn how to block network traffic with a [SecurityAdmin configuration](how-to-block-network-traffic-portal.md).
Copy file name to clipboardExpand all lines: articles/virtual-network-manager/how-to-create-mesh-network.md
+3-6Lines changed: 3 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ author: mbender-ms
5
5
ms.author: mbender
6
6
ms.service: azure-virtual-network-manager
7
7
ms.topic: how-to
8
-
ms.date: 05/07/2024
8
+
ms.date: 10/23/2024
9
9
ms.custom: engagement-fy23
10
10
---
11
11
@@ -43,7 +43,8 @@ To manually add the desired virtual networks for your Mesh configuration to your
43
43
:::image type="content" source="./media/create-virtual-network-manager-portal/add-virtual-networks.png" alt-text="Screenshot of add virtual networks to network group page.":::
44
44
45
45
1. To review the network group membership manually added, select **Group Members** on the *Network Group* page under **Settings**.
46
-
:::image type="content" source="media/create-virtual-network-manager-portal/group-members-list.png" alt-text="Screenshot of group membership under Group Membership." lightbox="media/create-virtual-network-manager-portal/group-members-list.png":::
46
+
47
+
:::image type="content" source="./media/how-to-create-hub-and-spoke/group-members-list.png" alt-text="Screenshot that shows a list of group members.":::
47
48
48
49
## Create a mesh connectivity configuration
49
50
@@ -53,12 +54,8 @@ This section guides you through how to create a mesh configuration with the netw
53
54
54
55
1. Select **Connectivity configuration** from the drop-down menu to begin creating a connectivity configuration.
55
56
56
-
:::image type="content" source="./media/create-virtual-network-manager-portal/connectivity-configuration-dropdown.png" alt-text="Screenshot of configuration drop-down menu.":::
57
-
58
57
1. On the **Basics** page, enter the following information, and select **Next: Topology >**.
59
58
60
-
:::image type="content" source="./media/create-virtual-network-manager-portal/connectivity-configuration.png" alt-text="Screenshot of add a connectivity configuration page.":::
By using [Azure Policy](/azure/virtual-network-manager/concept-azure-policy-integration), you define a condition to dynamically add two virtual networks to your network group when the name of the virtual network includes *prod*:
14
+
15
+
1. From the list of network groups, select **network-group**. Under **Create policy to dynamically add members**, select **Create Azure policy**.
16
+
1. In the **Create Azure policy** window, select or enter the following information, and then select **Preview resources**.
17
+
18
+
:::image type="content" source="./media/virtual-network-manager-define-azure-policy/network-group-conditional.png" alt-text="Screenshot of the pane for creating an Azure policy, including criteria for definitions.":::
19
+
20
+
| Setting | Value |
21
+
| ------- | ----- |
22
+
|**Policy name**| Enter **azure-policy**. |
23
+
|**Scope**| Choose **Select scopes** and then select your current subscription. |
24
+
|**Parameter**| Select **Name** from the dropdown list.|
25
+
|**Operator**| Select **Contains** from the dropdown list.|
26
+
|**Condition**| Enter **-spoke**. |
27
+
28
+
2. The **Preview resources** pane shows the virtual networks for addition to the network group based on the defined conditions in Azure Policy. When you're ready, select **Close**.
29
+
30
+
:::image type="content" source="media/virtual-network-manager-define-azure-policy/preview-virtual-networks.png" alt-text="Screenshot of Preview resources window with virtual networks in network group.":::
31
+
32
+
3. Select **Save** to deploy the group membership. It can take up to one minute for the policy to take effect and be added to your network group.
33
+
34
+
4. In the **Network Group** pane under **Settings**, select **Group members** to view the membership of the group based on the conditions that you defined in Azure Policy. Confirm that **Source** is listed as **azure-policy - subscriptions/<your_subscription_id>**.
35
+
36
+
:::image type="content" source="media/virtual-network-manager-define-azure-policy/group-members-list.png" alt-text="Screenshot of listed group members with a configured source." lightbox="media/virtual-network-manager-define-azure-policy/group-members-list.png":::
0 commit comments