What is default outbound access (DOA)?  Now considered “legacy,” it is configured by default on Azure Virtual Networks (VNets) that allowed the VNet to access the internet, or “public” networks, without any additional configuration.  And we all know, several Microsoft services require internet access to communicate with web endpoints for telemetry, updates, etc.  

First off, for any VNets that were created before March 31^st, nothing will change, this will only affect any new VNets that are created after the date DOA is “DOA.” 😊 So, you can add new AVD session hosts and W365 Cloud PCs to existing VNets with no worry. 

However, if you build a new VNet for an AVD/W365 deployment, you will have go through a couple of extra steps to configure internet access or deployment and connectivity of your session hosts or Cloud PCs will fail.

So, what can you do if you build a VNet for AVD/W365 after 3/31?  Here are three recommended solutions for when DOA is deprecated.

1. NAT Gateway – This is Microsoft’s recommended option.  However, for AVD/W365, this may not be the way to go. If your organization utilizes RDP Shortpath, a NAT Gateway will not be an option because it prevents UDP connectivity over public networks.  And we all know UDP connectivity is the secret sauce for RDP Shortpath.
2. Azure Standard Load Balancer – You can configure the load balancer with outbound rules to allow internet access.
3. Configure VNet SNet’s as nonprivate – If you have automated configuration with earlier versions of ARM templates, or Terraform that calls the older templates, this will be done for you even after 3/31.  If your organization just isn’t ready for private networking, you can still configure SNet’s with the portal, PowerShell, etc., with DOA enabled.

BIG CHRIS’ NOTE: You can also assign your VM’s NIC a public IP.  Please, DON’T DO THIS!

Again, VNets already created are fine, any new ones after 3/31, you will have to take action to allow outbound access, which is vital for AVD and W365.  We are just a half a month away, make the preparations now!