Possibility to change default gateway and force traffic via 3rd party gateway deployed as vm in Azure.
Traffic generated by VMs in Azure is not possible to be filtered or monitored right now. As there are vendors offering this type of functionality, it would be great to redirect machines to 3rd party gateway running in the cloud. Implementation for Azure team is trivial: change one dhcp option and disable default Azure gateway.
This feature was released in Ignite 2015, and is available in all Public Azure globally. Please check the documentation link:
André Coelho commented
Now, the next problem is how to create HA with 2x virtual appliances like Barracuda or CheckPoint.
If node1 is down, how second node assumes the network traffic? UDR only point to node1 or node2.
Chris Petrie commented
Is this it? User Defined Routes announced on May 5
i beleive this option was announced last week. can you please confirm? do we have any blog already for this with documentation?
Chris Petrie commented
Is there any update on this? Almost a year since this thread was opened.
So far there are a few virtual appliances available in Azure which would appear to be absolutely useless without being able to route traffic to them? (Check Point, Riverbed, Barracuda etc).
I'm not even sure why these virtual appliances exist, without having the underlying network infrastructure to support?
Do we know when this option will be available?
Douglas Boyd commented
This is proving a barrier to Azure adoption for us, as we can't meet our compliance and security requierments.
Not having gateways like this limits us do create protected environments in Azure... something my customer can do currently in AWS
It is so easy to do the same thing in AWS. This is a must for Azure to succeed.
Gael Soude commented
Totally agrea... This is the most important feature we are waiting for in Azure : Being able to change the default gateway in order to reroute traffic to some custom firewall. (checkpoint for instance)
It is great to have all the new networking features recently announced, but to get full functionality we would like to be able to specify all traffic to route through a virtual appliance (such as checkpoint virtual firewall)