Content by joclemen (2)

joclemen breaks down what Azure Key Vault’s paired-region replication really guarantees during a regional outage, why it becomes read-only after Microsoft-managed failover, and how to build true multi-region continuity with two Terraform reference architectures (private and public endpoint designs).

joclemen shares a real-world lesson from large SD-WAN customer deployments: Azure VPN Gateway uses fixed BGP timers (60s keepalive / 180s hold) and doesn’t negotiate down, so aggressive customer-premises timers (like 10/30) can trigger repeated BGP session flaps and route instability.