1
00:00:01,540 --> 00:00:01,870
Alright.

2
00:00:01,870 --> 00:00:05,310
So lastly, we've got Virtual WAN, and to set the stage here,

3
00:00:05,310 --> 00:00:08,420
let me go to my VNets, my virtual networks,

4
00:00:08,420 --> 00:00:12,580
and recall that a virtual network can get pretty complicated

5
00:00:12,580 --> 00:00:15,390
pretty quickly because you need to know IPv4,

6
00:00:15,390 --> 00:00:17,380
you may need to know IPv6,

7
00:00:17,380 --> 00:00:21,940
you've got the concept of peering virtual networks and the implications there,

8
00:00:21,940 --> 00:00:23,920
there is laying out your subnets,

9
00:00:23,920 --> 00:00:27,620
there is interacting with managed appliances like firewalls,

10
00:00:27,620 --> 00:00:31,070
there is routing, there is custom DNS, there is a lot going on here.

11
00:00:31,070 --> 00:00:32,080
So as I had mentioned,

12
00:00:32,080 --> 00:00:35,140
the value proposition of the virtual WAN is that

13
00:00:35,140 --> 00:00:37,740
you get a managed hub experience.

14
00:00:37,740 --> 00:00:40,640
And the way this works from an object model perspective is that

15
00:00:40,640 --> 00:00:43,540
you create a virtual WAN resource like I have,

16
00:00:43,540 --> 00:00:46,860
and then you deploy one or more managed hubs.

17
00:00:46,860 --> 00:00:50,240
So if we go to Connectivity, Hubs, I don't have any yet,

18
00:00:50,240 --> 00:00:53,230
so you'd start by creating them, and then from then on,

19
00:00:53,230 --> 00:00:57,970
you'll see that you can manage your unmanaged VNets the way you normally do,

20
00:00:57,970 --> 00:01:02,150
and then you manage your managed hubs in the context of Virtual WAN.

21
00:01:02,150 --> 00:01:02,960
So let me show you.

22
00:01:02,960 --> 00:01:05,950
Let's create a new hub, I'll put it in my home region.

23
00:01:05,950 --> 00:01:09,040
Now you can have multiple hubs, and you can link them together.

24
00:01:09,040 --> 00:01:09,420
Again,

25
00:01:09,420 --> 00:01:13,040
that's one of the value propositions here that you can design a pretty

26
00:01:13,040 --> 00:01:17,130
complicated multi‑hub spoke network infrastructure environment.

27
00:01:17,130 --> 00:01:20,600
Call this twaz800managedhub.

28
00:01:20,600 --> 00:01:22,650
All you choose is the address space.

29
00:01:22,650 --> 00:01:26,020
I'm going to do 10.98.0.0/16.

30
00:01:26,020 --> 00:01:28,820
You don't get any control outside of that like you do

31
00:01:28,820 --> 00:01:30,710
when you're doing unmanaged VNets,

32
00:01:30,710 --> 00:01:33,850
you're delegating all of that management to Azure,

33
00:01:33,850 --> 00:01:37,740
but watch this, it steps us through here the different kinds of connections,

34
00:01:37,740 --> 00:01:39,870
and we can always create them after the fact,

35
00:01:39,870 --> 00:01:42,180
this is just part of the creation workflow.

36
00:01:42,180 --> 00:01:45,180
If we've got need to do site‑to‑site VPN,

37
00:01:45,180 --> 00:01:48,490
we can just go ahead and choose what speed,

38
00:01:48,490 --> 00:01:51,320
what bandwidth are we looking at, and go on from there.

39
00:01:51,320 --> 00:01:55,400
If we want to do point‑to‑site, yes, you'll need to have a gateway,

40
00:01:55,400 --> 00:01:57,290
and you just choose how many clients.

41
00:01:57,290 --> 00:02:00,230
So the interface is different from what you see when you're

42
00:02:00,230 --> 00:02:02,330
deploying these resources separately.

43
00:02:02,330 --> 00:02:06,320
What kind of configuration are you looking for and create new configuration.

44
00:02:06,320 --> 00:02:08,730
That's going to determine things like what kind of

45
00:02:08,730 --> 00:02:11,770
authentication you're going to do, are you going to do certificate,

46
00:02:11,770 --> 00:02:15,520
or radius, or Azure AD, so it's an abstraction really.

47
00:02:15,520 --> 00:02:16,430
I want you to see that.

48
00:02:16,430 --> 00:02:20,910
It's an abstraction over doing VNets and hub spokes and hybrid

49
00:02:20,910 --> 00:02:23,840
networking that you otherwise would have to do manually.

50
00:02:23,840 --> 00:02:28,700
So once you have the virtual hub, that can create quite a bit of time to create.

51
00:02:28,700 --> 00:02:33,190
You then can go into the hub, and you can stand up additional VPNs,

52
00:02:33,190 --> 00:02:34,690
ExpressRoute circuits,

53
00:02:34,690 --> 00:02:38,220
and this virtual network connections allows you to create

54
00:02:38,220 --> 00:02:41,430
VNet peerings and Virtual WAN parlance.

55
00:02:41,430 --> 00:02:45,650
The network connection is the same thing as a virtual network peering.

56
00:02:45,650 --> 00:02:48,550
And then also, it's not surfaced here at the Virtual WAN,

57
00:02:48,550 --> 00:02:50,380
but once you're inside your hub,

58
00:02:50,380 --> 00:02:55,370
you can work with the BGP routing and route table creation and propagation.

59
00:02:55,370 --> 00:02:59,230
That becomes important if you're going to do things like laying in Azure

60
00:02:59,230 --> 00:03:02,390
Firewall or third‑party network virtual appliances,

61
00:03:02,390 --> 00:03:08,000
and you want to customize routing in your virtual network infrastructure. There you have it.