Hi Reddit , I have a customer that currently has a primary of 500/500 Mbps connection and a failover 250/250 Mbps from another provider connection at their premises.They use the circuits for basic internet breakout/hosted mail , branch connectivity and ssl dial-in vpn at present.Each circuit has a couple of provider supplied public IP's that terminate into a NGFW at present and they use SD-WAN functionality on the firewall to connect to a couple of their branch offices.
They are in the process of moving a majority of their internal apps to Azure and the developers have urged them to upgrade their primary 500/500 link to an Azure ExpressRoute to ensure consistent app time response.
For whatever reason it's been really hard to get a straight answer either from the devs and ISP on some things . From what I can tell the ExpressRoute sort of acts like a private MPLS style link that they migrated away from a couple years ago , ie a fully private style link with no public routable addresses.
Questions
- Will the public IP addresses that were assigned to the primary 500/500 circuit fall away or become unusable if upgraded to ExpressRoute ? Though the dial in ssl vpn will become less used when apps are migrated to Azure they would still need access to some remote internal apps.
- From the documentation I've read I can push a 0.0.0.0 through the ExpressRoute for internet breakout via BGP. Are there any cons to doing this ?
Have researched as much as I can . Sorry if I missed something basic in the docs.
No comments:
Post a Comment