Merge pull request #268989 from greg-lindsay/appgw-upd

prmerger-automator[bot] · web-flow · commit 680dda1f88f1 · 2024-03-13T23:13:12.000Z
edit and add note
diff --git a/articles/application-gateway/configuration-infrastructure.md b/articles/application-gateway/configuration-infrastructure.md
@@ -5,7 +5,7 @@ services: application-gateway
 author: greg-lindsay
 ms.service: application-gateway
 ms.topic: conceptual
-ms.date: 07/05/2023
+ms.date: 03/13/2024
 ms.author: greglin
 ---
 
@@ -104,7 +104,7 @@ Azure Virtual Network Manager is a management service that allows you to group,
 Security admin rule configuration in Azure Virtual Network Manager allows you to define security policies at scale and apply them to multiple virtual networks at once.
 
 > [!NOTE]
-> Security admin rules of Azure Virtual Network Manager apply to Application Gateway subnets that only contain application gateways that have [Network Isolation](Application-gateway-private-deployment.md) enabled. Subnets that have any application gateway that doesn't have [Network Isolation](Application-gateway-private-deployment.md) enabled won't have security admin rules.
+> Security admin rules of Azure Virtual Network Manager only apply to Application Gateway subnets that contain application gateways with [Network Isolation](Application-gateway-private-deployment.md) enabled. Subnets with application gateways that have [Network Isolation](Application-gateway-private-deployment.md) disabled don't have security admin rules.
 
 ## Network security groups
 
@@ -156,6 +156,9 @@ You can block all other incoming traffic by using a **Deny All** rule.
 |---|---|---|---|---|---|
 |Any|Any|Internet|Any|Any|Allow|
 
+> [!NOTE]
+> Application Gateways that don't have [Network Isolation](application-gateway-private-deployment.md#route-table-control) enabled don't allow traffic to be sent between peered VNets when **Allow traffic to remote virtual network** is disabled.
+
 ## Supported user-defined routes
 
 Fine-grain control over the Application Gateway subnet via route table rules is possible in public preview. For more information, see [Private Application Gateway deployment (preview)](application-gateway-private-deployment.md#route-table-control).
