My company contracted to have our Azure environment build for us to expedite our migration. So I am inheriting resources that I have a question about.
We are using UDR's to force traffic through a CheckPoint virtual appliance. These UDR's are cumbersome in that we were guided to explicitly define every network for our "On Premise" with a specific route entry. So each route table has 37 statically defined routes to the same IP address as the default route. The only route entry in each table that doesnt point to the checkpoint is the route to itself which uses "Virtual network". I was told Azure resources have to exactly match the routed network's prefix mask with what is advertised to ExpressRoute via BGP.
My question is, is this really necessary?
Thanks in advance for any response you can offer!
Per