hands-on lab

Connect Azure Virtual Networks with VNet-to-VNet VPN Connections

Difficulty: Intermediate

Duration: Up to 2 hours

Students: 2,481

Rating: 4.4/5

Start lab

Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.

Learn and validateUse validations to check your solutions every step of the way.

See resultsTrack your knowledge and monitor your progress.

Description

Azure virtual networks (VNets) connected with a VNet-to-VNet connection can communicate through a secure IPSec/IKE encrypted tunnel using Azure's backbone network without ever traversing the public internet. VNet-to-VNet connections can connect VNets in different regions, Azure subscription, and associated with different Microsoft Entra tenants. VNet-to-VNet connections are ideal for setting up your own geo-replication or synchronization with secure connectivity over Azure's backbone network and for connecting VNets in multi-tier applications with isolation or administrative requirements between tiers.

In this lab, you will establish a VNet-to-VNet connection to allow a virtual machine to access another virtual machine in a different VNet.

Lab Objectives

Upon completion of this lab, you will be able to:

Understand VNet-to-VNet connections and when you would prefer them over other methods for connecting VNets
Create VPN gateways using the Azure Portal and Azure CLI
Configure VNet-to-VNet connections between VPN gateways
Test VNet-to-VNet connection connectivity

Lab Prerequisites

You should be familiar with:

Basic understanding of Azure networking concepts including VNets, subnets, and network security groups
Working with at the command line in Linux and having prior experience with the Azure CLI is beneficial

You can fulfill the prerequisites by completing the Introduction to Azure Virtual Networking Course and the Linux Command Line Byte Session Learning Path.