Published in · 4 min read · Sep 6, 2021
--
Comparison — Azure ExpressRoute vs Azure VPN Gateway.
ExpressRoute provides direct connectivity to Azure cloud services and connects Microsoft’s global network. All transferred data is not encrypted, and do not go over the public Internet.
VPN Gateway provides secured connectivity to Azure cloud services over the public Internet. All transferred data is encrypted in a private tunnel as it crosses the internet.
ExpressRoute connections use a private, dedicated connection through a third-party connectivity provider to provide a direct connection between on-premises network and Azure.
This architecture is suitable for hybrid applications running large-scale, mission-critical workloads that require a high degree of scalability and resiliency.
Key Points
- ExpressRoute uses layer 3 connectivity and security standards.
- ExpressRoute connects the edge router of the on-premise network and Azure infrastructure with redundancy capabilities.
- ExpressRoute provides dynamic scalability to help meet organizational needs (from 50 Mbps to 10 Gbps).
Benefits
- Much higher bandwidth available (up to 10 Gbps).
- Supports dynamic scaling of bandwidth to help reduce costs during periods of lower demand.
- 99.9% availability SLA across the entire connection.
Considerations
- The setup and configuration for ExpressRoute are more complex and will require collaboration with the connectivity provider.
- ExpressRoute requires the on-premises installation of high-bandwidth routers.
- ExpressRoute circuit is handled and managed by the connectivity provider.
- ExpressRoute doesn’t support the Hot Standby Router Protocol (HSRP). You’ll need to enable a Border Gateway Protocol…
