Feature Request: Azure Route Server

[richardf5]

Is there an existing issue for this?

• I have searched the existing issues

Infrastructure as Code Type? (Required)

terraform

Starter Module? (Required)

terraform - platform_landing_zone

Use Case (Required)

We have deployed Platform Landing Zones for customers using SD-WAN as their network backbone. Primarily, it's been Meraki or VeloCloud.

By default, these devices need an Azure Route Server to propagate routes using BGP to Azure (and vis-versa).

In one case, the VeloCloud NVA is also the core Firewall.

I could build a module, but to process the tfvars settings in the same way you do requires updating your code (the locals - > JSON) ones.

Every time there was an update to the accelerator code, I'd run the risk of losing my changes unless I remember to merge them each time!

Proposed Solution (Required)

Having an option like you do with Bastion i.e. Set deploy to 'yes' and specify a Subnet IP address would be awesome!

For SD-WAN, the Route Server needs to be set to branch-to-branch mode and use ASPath as the routing preference.

Important Factoids (Optional)

No response

References (Optional)

No response

[jaredfholgate]

Not sure whether we will support this in ALZ, but will discuss. In the meantime this pattern module may help: https://registry.terraform.io/modules/Azure/avm-ptn-network-routeserver/azurerm/latest

[richardf5]

Thanks @jaredfholgate . I do think it's important if we're going to deploy the accelerator for customers production environments. BGP route propagation is key in these scenarios and not everyone uses ExpressRoute!