Copyright (c) 2026 MindMesh Academy. All rights reserved. This content is proprietary and may not be reproduced or distributed without permission.
2.3.1. VNet Peering
VNet peering connects VNets with low-latency, high-bandwidth private connectivity over Microsoft's backbone network.
Types:
| Type | Connection | Latency |
|---|---|---|
| Regional peering | Same region | ~1ms |
| Global peering | Different regions | Region-dependent |
Critical Characteristics:
- Non-transitive – If VNet A peers with B, and B peers with C, A cannot reach C through B (without gateway transit)
- No overlapping addresses – Peered VNets cannot have overlapping CIDR ranges
- Bidirectional configuration – Both sides must configure the peering
Gateway Transit:
Gateway transit allows a spoke VNet to use the hub's VPN/ExpressRoute gateway:
Settings (Hub side):
- Allow gateway transit: Enabled
- Use remote gateway: Disabled
Settings (Spoke side):
- Allow gateway transit: Disabled
- Use remote gateway: Enabled
⚠️ Exam Trap: Gateway transit is one-way. A VNet can either have a gateway (transit enabled) or use another VNet's gateway (remote gateway enabled), but not both.
Written byAlvin Varughese
Founder•15 professional certifications