| Name | AzureLocal_Network_Test_NetworkDefaultGatewayRequirement |
|---|---|
| Severity | Critical: This validator will block operations until remediated. |
| Applicable Scenarios |
|
This environment validator checks that there is only one default gateway defined on each server in the system.
Review the Environment Validator output JSON. Check the AdditionalData field for summary of which server's default gateway are not configured properly. You can identify the host by the TargetResourceID field, the format is MachineName, NetworkDefaultGateway.
Below is an example of a validator result (note that the machine name, IP address in the below example will be different based on your actual environment):
{
"Name": "AzureLocal_Network_Test_NetworkDefaultGatewayRequirement",
"DisplayName": "Validate that only one default gateway is defined on the server",
"Tags": {},
"Title": "Validate that only one default gateway is defined on the server",
"Status": 1,
"Severity": 2,
"Description": "Each node must have a single default gateway configured.",
"Remediation": "https://aka.ms/azurelocal/envvalidator/networkgatewayrequirement",
"TargetResourceID": "AZLOC-NODE1, NetworkDefaultGateway",
"TargetResourceName": "AZLOC-NODE1, NetworkDefaultGateway",
"TargetResourceType": "NetworkDefaultGateway",
"Timestamp": "\/Date(1758300600191)\/",
"AdditionalData": {
"Detail": "Multiple default gateways found on AZLOC-NODE1: 192.168.2.1, 200.121.1.1. There should be only one default gateway defined on the server. Please run below PowerShell cmdlet to verify the default gateway configuration on the machine: Get-NetRoute -DestinationPrefix "0.0.0.0/0" -AddressFamily IPv4 If you find multiple different gateway defined for the NextHop property from the above cmdlet call, please remove the one that you do not need from the system. Remove-NetRoute -DestinationPrefix "0.0.0.0/0" -NextHop <GATEWAY_IP_YOU_DO_NOT_NEED> -Confirm:$false",
"Status": "FAILURE",
"TimeStamp": "09/19/2025 16:50:00",
"Resource": "NetworkDefaultGateway",
"Source": "AZLOC-NODE1"
},
"HealthCheckSource": "Manual\\Standard\\Medium\\Network\\c826ddf1"
}Error Message: (NOTE: The IP address below is just an example. It might be different in your actual environment.)
Multiple default gateways found on MACHINENAME: 192.168.2.1, 200.121.1.1.
Root Cause: The validator found multiple default gateways defined in the system.
- Check the default gateway configured in the system by looking at route table for "DestinationPrefix" of "0.0.0.0/0"
Get-NetRoute -DestinationPrefix "0.0.0.0/0" -AddressFamily IPv4- The above might return multiple entries. We need to clean the route table so it only contains 1 default entry to "0.0.0.0/0":
Remove-NetRoute -DestinationPrefix "0.0.0.0/0" -NextHop <GATEWAY_IP_YOU_DO_NOT_NEED> -Confirm:$falseError Message:
No default gateway defined on any adapter(s) on MACHINENAME.
Root Cause: The validator cannot find a valid default gateway defined in the system.
- Check the default gateway configured in the system by looking at route table for "DestinationPrefix" of "0.0.0.0/0"
Get-NetRoute -DestinationPrefix "0.0.0.0/0" -AddressFamily IPv4It might not have any information returned. You need to make sure your route table contains at least 1 default gateway for your management subnet. Below is an example on how to add a new route in your system's route table. Please adjust based on your network requirement - make sure to consult your network team before making any change.
New-NetRoute -DestinationPrefix "0.0.0.0/0" -InterfaceAlias <MGMT_ADAPTER_ALIAS> -AddressFamily IPv4 -NextHop <GATEWAY_IP>