Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add UDR option to route spoke traffic internally #171

Merged
merged 9 commits into from
Dec 6, 2024
Merged

Add UDR option to route spoke traffic internally #171

merged 9 commits into from
Dec 6, 2024

Conversation

simonkurtz-MSFT
Copy link
Collaborator

@simonkurtz-MSFT simonkurtz-MSFT commented Oct 31, 2024
edited
Loading

Running bicep via AZD with routeSpokeTrafficInternally set to false (default) causes no change and maintains current behavior:

image

Running bicep via AZD with routeSpokeTrafficInternally set to true adds a new spoke-internal route:

image

Fixes #170

@simonkurtz-MSFT simonkurtz-MSFT requested a review from a team as a code owner October 31, 2024 15:07
@kpantos
Copy link
Member

kpantos commented Nov 1, 2024
edited
Loading

Thank you so much @simonkurtz-MSFT for putting this together. Can you also please update the documentation with the new parameter that's added at the following documents:

So that users know they can change the LZA behavior?

Also, this needs to be implemented at the terraform side as well so that there's feature parity between implementations. Can you work on this too or should we assign someone else for it?

@simonkurtz-MSFT
Copy link
Collaborator Author

simonkurtz-MSFT commented Nov 4, 2024
edited
Loading

Hi @kpantos, thank you! I added to the standalone-deployment-guide but I did not see a section in the spoke deployment.

I would love to ask for help with Terraform as that is entirely out of my expertise, please.

@simonkurtz-MSFT
Copy link
Collaborator Author

Hi @kpantos, the most recent commit now supports internal routes when multiple VNet address prefixes are used. I validated these three combinations.

1. No internal routes

    "routeSpokeTrafficInternally": {
      "value":  false
    },   
    "spokeVNetAddressPrefixes": {
      "value":  ["10.1.0.0/22"]
    }

image

2. One internal route

    "routeSpokeTrafficInternally": {
      "value":  true
    },
    "spokeVNetAddressPrefixes": {
      "value":  ["10.1.0.0/22"]
    }

image

3. Multiple internal routes

    "routeSpokeTrafficInternally": {
      "value":  true
    },
    "spokeVNetAddressPrefixes": {
      "value":  ["10.1.0.0/22", "10.2.0.0/22"]
    }

image

@kpantos kpantos merged commit 0e34520 into Azure:main Dec 6, 2024
4 of 5 checks passed
@kpantos
Copy link
Member

kpantos commented Dec 6, 2024

Awesome @simonkurtz-MSFT merged the pull request to the main branch.
Thank you so much for your effort.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kpantos kpantos kpantos approved these changes

@thotheod thotheod Awaiting requested review from thotheod thotheod is a code owner automatically assigned from Azure/cae-dai-lza-aca-owners

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Provide option to keep spoke traffic internal
2 participants
@simonkurtz-MSFT @kpantos