ExpressRoute Capabilities

ExpressRoute provides private, dedicated connectivity between on-premises networks and Microsoft cloud services. It is available across all Azure regions, with connections established through ExpressRoute locations—datacenters where Microsoft peers with service providers.

By connecting to one ExpressRoute location within a geopolitical region, you gain access to all Azure regions in that geopolitical region.

---

Key Benefits of ExpressRoute

1. Layer 3 Connectivity (BGP)

• Uses Border Gateway Protocol (BGP) for dynamic route exchange.

• Routes are exchanged between:

  • On-premises networks

  • Azure virtual networks

  • Microsoft public service endpoints

• Multiple BGP sessions are established for different traffic profiles.

---

2. Built-in Redundancy

• Each ExpressRoute circuit includes two physical connections to two separate Microsoft Enterprise Edge routers (MSEEs).

• Dual BGP connections are required—one per MSEE—ensuring high availability.

---

3. Connectivity to Microsoft Cloud Services

ExpressRoute enables private access to:

• Microsoft Azure services

• Microsoft Office 365 (requires Microsoft approval)

• Microsoft Dynamics 365

Office 365 is designed for secure Internet access, so ExpressRoute connectivity must be explicitly authorized.

---

4. Regional and Global Reach

Geopolitical Region Connectivity

• Connect to one ExpressRoute location and access all regions within that geopolitical region.

• Example: Connecting in Amsterdam provides access to Northern and Western Europe.

ExpressRoute Premium Add-On

• Enables global connectivity across geopolitical boundaries (excluding national clouds).

• Increases:

  • Route table limits

  • Number of VNets

  • Access to Office 365 and Dynamics 365

---

5. ExpressRoute Global Reach

• Enables private, site-to-site connectivity between on-premises locations via Microsoft’s backbone.

• Example:

  • Data center in California (Silicon Valley ER)

  • Data center in Texas (Dallas ER)

  • Traffic between them flows over the Microsoft network

---

6. Bandwidth Options

• Available bandwidths range from 50 Mbps to 10 Gbps (up to 100 Gbps depending on provider).

• Supported speeds depend on the connectivity provider.

---

7. Flexible Billing Models

• Unlimited Data

  • Fixed monthly fee

  • All inbound and outbound data included

• Metered Data

  • Inbound data is free

  • Outbound data billed per GB (rates vary by region)

• ExpressRoute Premium Add-On

  • Global reach, larger routing tables, more VNets, and SaaS access

---

Coexisting ExpressRoute and Site-to-Site VPN

• ExpressRoute provides private WAN connectivity (not over the Internet).

• Site-to-Site VPN uses encrypted public Internet connectivity.

• Both can coexist on the same virtual network, enabling:

  • VPN as a failover for ExpressRoute

  • Connectivity to sites not directly connected to ExpressRoute

⚠️ This configuration requires two virtual network gateways:

• One VPN gateway

• One ExpressRoute gateway

Currently, coexistence deployment is supported only via PowerShell, not the Azure Portal.

---

ExpressRoute Connection Models

You can connect to Microsoft using one of the following models:

1. Co-located at a Cloud Exchange

• For customers hosted in the same facility as a cloud exchange

• Supports:

  • Layer 2 cross-connections

  • Managed Layer 3 connections

---

2. Point-to-Point Ethernet

• Direct Ethernet connection from on-premises sites to Microsoft

• Supports:

  • Layer 2 connections

  • Managed Layer 3 connections

---

3. Any-to-Any (IPVPN / MPLS)

• Integrates ExpressRoute into an existing WAN

• Microsoft cloud appears as another branch office

• Typically uses managed Layer 3 connectivity

---

Intersite Connectivity Comparison