fortinet-azure-solutions icon indicating copy to clipboard operation
fortinet-azure-solutions copied to clipboard
verified publisher icon 40net-cloud

Inside vWAN routing affinity

Open coding-totoro opened this issue 4 months ago • 0 comments

Hi,

When running this: https://github.com/40net-cloud/fortinet-azure-solutions/blob/main/FortiGate/AzureVirtualWAN/doc/insidevwan-sdwan.md

The traffic leaving the vWAN NVA is not sticky at the internal load balancer causing basic things like admin.google.com to not work as google detects multiple public ips in the traffic, same for most sites with MFA, they sign out the user as the IP is flip flopping between nodes.

I suspect its due to this: https://learn.microsoft.com/en-us/azure/load-balancer/distribution-mode-concepts and session affinity was left in default.

Can you advise on how this traffic flow is intended to work?

coding-totoro avatar Dec 09 '25 06:12 coding-totoro