My scenario is like below:
BGP session I would like to setup but I am not entirely sure if that will work.
we have two Express route from two physically diverse data center terminating on the same Azure Vnet.
DC 1:
Firewall 1 ASN 6501 <--> Azure Sydney VNET-1 - ASN 12076 - Private
Firewall 1 ASN 6501 <--> Azure Sydney VNET-1 - ASN 12076 - Public
Firewall 1 ASN 6501 <--> Azure Sydney VNET-1 - ASN 12076 - MS
DC 2, ASN 6502
Firewall 2 ASN 6502 <--> Azure Sydney VNET-1 - ASN 12076 - Private
Firewall 2 ASN 6502 <--> Azure Sydney VNET-1 - ASN 12076 - Public
Firewall 2 ASN 6502 <--> Azure Sydney VNET-1 - ASN 12076 - MS
As I am planning to use the firewall there is no VRF.
I am also planning to use the BGP parameters Local pref 150 in DC1 and preped x 2 on DC2 to make sure DC1 prefer all the time.
My questions ?
Q1: Do this setup work where two different ASN from client terminating on the single ASN ad VNET at Azure.
Q2: Do I need to have the VRF or Firewall policy to set apart the all 3 session is good enough?
Q3: Can I control Azure Vnet via BGP Prepend to make sure it always send the traffic to DC1 and if the DC1 is not available then only it sends the traffic to DC2?
Q4: Do Azure has Networking only read only or read and write access as it is going to be hard to get control from Server team for azure unless it is only networking part.
Thanks,
Nilay.