Hi all,
I am currently designing our DC VPN connectivity into MS Azure for our running workloads, and am looking to terminate our DC end onto 2x 2016 RRAS servers load balanced using NLB. One thing I am unsure of however is that in the event of our monthly patching cycle, each of these servers will be rebooted (not at the same time), but what would the impact be for the tunnels during this planned failover? Is it a Powershell line to fail them over gracefully without packet loss? Are there any design considerations I should take into account to make this transparent? I don't want it to be the case where the business has Azure service outage every month due to our best practice security patching :)
Any advise or guidance you could offer would be greatly appreciated.
Thanks