What is vnet peering
Last updated: April 1, 2026
Key Facts
- VNet peering enables direct connectivity between two Azure virtual networks without routing through the public internet
- Peered networks must have non-overlapping IP address spaces (CIDR blocks)
- Peering can occur within the same region (regional peering) or across different Azure regions (global peering)
- Network traffic between peered networks stays within Microsoft's backbone infrastructure
- VNet peering supports both one-way and bidirectional communication through mutual peering connections
Overview
Azure Virtual Network peering is a fundamental networking feature that connects two virtual networks within Azure infrastructure. When you establish peering between networks, virtual machines, databases, and other resources can communicate directly using private IP addresses, similar to resources on the same physical network. This eliminates the need for traffic to traverse the public internet or require VPN connections.
How VNet Peering Works
Peering operates at the network layer by updating routing tables in both virtual networks. When peering is established, Azure automatically adds routes that direct traffic destined for the peered network to the appropriate network interface. Resources in Network A can then reach resources in Network B by addressing them directly via their private IP addresses, without requiring gateway devices or VPN configurations.
Types of VNet Peering
- Regional Peering: Connects virtual networks within the same Azure region, offering the lowest latency and highest bandwidth
- Global Peering: Connects virtual networks across different Azure regions worldwide, enabling multi-region application architectures
Key Requirements and Limitations
Virtual networks being peered must have non-overlapping IP address spaces. For example, you cannot peer a network using 10.0.0.0/16 with another network also using 10.0.0.0/16. Additionally, peering must be configured on both sides of the connection to enable bidirectional communication. Azure supports transitive peering through User-Defined Routes (UDR), allowing traffic to flow through hub networks in hub-and-spoke topologies.
Benefits and Use Cases
VNet peering reduces latency and improves performance compared to internet-based connections. Organizations use peering for multi-tier application architectures, disaster recovery setups, shared services models, and connecting development/test environments to production networks. The private, secure connectivity also enhances security by keeping traffic off public networks.
Related Questions
How does VNet peering differ from VPN connections?
VNet peering uses Microsoft's private backbone for direct network connectivity with lower latency, while VPN connections encrypt traffic over the public internet. Peering is simpler to configure but requires non-overlapping IP spaces, whereas VPN works with overlapping ranges.
What are the costs associated with VNet peering?
Regional VNet peering is free, while global peering across regions incurs ingress and egress charges based on data transferred. These charges are typically lower than equivalent bandwidth costs for other connectivity methods.
Can peered networks access each other's resources automatically?
Network connectivity is established, but resource access still depends on Network Security Groups (NSGs) and firewall rules on individual resources. You must configure NSG rules to permit traffic between the peered networks.
More What Is in Daily Life
Also in Daily Life
More "What Is" Questions
Trending on WhatAnswers
Browse by Topic
Browse by Question Type
Sources
- Microsoft Learn - Virtual Network PeeringCC-BY-4.0
- Wikipedia - Microsoft AzureCC-BY-SA-4.0