Skip to main content

TDP Azure VPN C3 IPSEC Link Over Express route (West Europe)-Scheduled 2024/03/20

We want to inform you about an upcoming scheduled maintenance activity for our TDP Azure Virtual WAN infrastructure,

Scheduled 20 March 2024 at 11:00 PM and concluding at 1:00 AM (CET)

Maintenance Details:

  • Presentation of the Change TDP Azure VPN C3 IPSEC Link Over Express route (West Europe):
    • This maintenance involves the activation of the secondary tunnel between Cisco ASA (Elancourt) and Azure WEU. It encompasses configuring BGP between the Azure instances and Cisco ASA , alongside the implementation of ASPath-Prepend to prioritize Link 0 over Link 1.
    • These changes aim to maintain continuous VPN connectivity during Azure-initiated maintenance activities.
    • The purpose of this maintenance is to address the intermittent disruptions caused by Azure-initiated VPN maintenance operations. By activating the secondary tunnel and configuring ASPath-Prepend, the objective is to ensure uninterrupted VPN connectivity, preventing service interruptions during Azure maintenance activities.
More info about recurring maintenance operations : Azure VPN Gateway Maintenance Events Maintenance Events

  • Impact on Services :

    • During the maintenance window,Expect a downtime of up to 30 minutes during this operation for the following:

      • Elancourt On-premises and virtual network VNET traffic :

        • Site-to-VNET traffic through the vHub TDP West Europe vhub may experience 30 minutes of downtime, may experience brief interruptions.

        • [WARNING] Landing zone Innovate or Industrialize (with Corporate addon) connected to TDP West Europe vhub that wish to access the Thales_WEU or vice versa (Mobility , different Thales sites RIE, Gitab C3 WEU , ISAP WEU ...)

        • [WARNING] CLoudbridge Link for projects "EIP / API Factory APIGEE " is also affected by this disruption

        • [WARNING] The domain *.infra.thales as well as the routing to and from the group Elancourt will be suspended

      • DNS :

        • TDP internal resolution

          • [!IMPORTANT] The domains *.infra.thales will be unavailable during this time

          • There is no impact or disruption on domain *.tdp.infra.thales.
        • TDP External resolution

          • [!IMPORTANT] The domains *.infra.thales , *.gemalto.com and all azure forwarded DNS rule like *.blob.core.windows.net will be unavailable during this time

            • [!IMPORTANT] The DIS vHub will be affected, with disruption due to the unavailability of services during this operation carried by TDP Infoblox DNS services (Group Internal DNS resoltion *.infra.thales and *.gemalto.com.)

            • To minimize any potential disruptions, we kindly request your support in updating the TTL (Time to Live) for DNS entries related to *.gemalto.com TDP Hosted services. Extending the TTL will help mitigate any DNS-related interruptions during this maintenance period.

      • Gitab C3 WEU remains accessible from TDP W.EU VNETs (for Inter-Hub synchronization )

      • TNAP ZPA Access to Gitab C3 WEU remains accessible

  • Action Required:

    • for information
      • CAB TDP : RITM0041230
      • RFC Group : 13876693
    • We would like you to take account of this scheduled maintenance and, if necessary, adjust your operational procedures to take into consideration the potential downtime.
    • We apologise for any inconvenience this may cause and thank you for your understanding as we work to improve our services.

Please do not hesitate to contact our support https://postit.service-now.com/esc if you have any questions or need assistance with this maintenance.

Thank you for your cooperation.

Trustnest MCS : Managed Cloud Services - Network Backbone Team