662 questions with Azure Firewall tags

Sort by: Updated
Updated Created Answers
1 answer One of the answers was accepted by the question author.

How would TLS inspection work with WAF enabled App Gateway and Azure Firewall?

Hi, I have been struggling with this from a while now. Our design has WAF enabled App gateway for incoming HTTP / HTTPS traffic from internet and then have Azure Firewall behind it. Have couple of queries for which I need assistance: 1: Does WAF has…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Web Application Firewall
asked 2024-09-18T23:33:09.83+00:00
Rakesh Singh 205 Reputation points
edited a comment 2024-10-03T19:28:10.1833333+00:00
Mail Sa 0 Reputation points
0 answers

My network rule that specifically allows access to public SQL MAnaged Instance URL does not appear to work

I have two virtual hosts in my Azure V-NET. The subnet they are are in is connected to a route table that sends 0.0.0.0/0 to the internal IP Address of my Azure Firewall. From these virtual hosts which send traffic through the Azure Firewall I can reach…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-25T15:36:33.22+00:00
JohnSebastian-3934 276 Reputation points
commented 2024-10-03T14:52:51.78+00:00
Ganesh Patapati (Quadrant Resource LLC) 415 Reputation points Microsoft Vendor
1 answer

How to replace Route Tables by using Azure Route Server?

How do I setup Azure Route Server to replace Route Tables that route traffic to an Azure Firewall instance? We have a hybrid setup and our on-premise location is connected to our Azure environment via Express Route. We have an Azure Network Gateway (type…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
Azure Route Server
Azure Route Server
An Azure service that enables network appliances to exchange route information with Azure virtual networks dynamically.
7 questions
asked 2024-10-03T07:47:02.21+00:00
Bram vd Klinkenberg 51 Reputation points
commented 2024-10-03T10:43:46.1866667+00:00
KapilAnanth-MSFT 44,936 Reputation points Microsoft Employee
0 answers

Azure Firewall change public IP

Recently Azure have made their public IP addresses zone redundant by default: https://azure.microsoft.com/en-us/blog/azure-public-ips-are-now-zone-redundant-by-default/ With basic public IP addresses being retired next year I need to remove mine from as…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-10-01T09:47:17.3333333+00:00
Eddie Vincent 0 Reputation points
commented 2024-10-03T10:26:35.9433333+00:00
Eddie Vincent 0 Reputation points
1 answer One of the answers was accepted by the question author.

Does Azure Firewall support BGP?

Does Azure Firewall support BGP? I am looking into Azure Route Server to replace the route tables which we now deploy with each (spoke) vnet. I read an article stating that Azure Firewall does not support BGP, so using ARS in combination with AFW would…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Route Server
Azure Route Server
An Azure service that enables network appliances to exchange route information with Azure virtual networks dynamically.
7 questions
asked 2024-10-02T12:36:18.5+00:00
Bram vd Klinkenberg 51 Reputation points
accepted 2024-10-02T14:04:52.98+00:00
Bram vd Klinkenberg 51 Reputation points
5 answers

When I send traffic to the firewall, my host cannot reach any powerapps

I have virtual hosts in Azure Commercial West US 2 region and Powerapps running in the Azure GCC environment. All Powerapps run just fine when I do not send any traffic (0.0.0.0/0) through the Azure Firewall. However as soon as I send traffic through…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-23T13:38:00.8933333+00:00
JohnSebastian-3934 276 Reputation points
answered 2024-09-30T20:19:21.5733333+00:00
JohnSebastian-3934 276 Reputation points
1 answer

Azure Storage Account - Public Access via Azure Front Door Endpoint - Firewall Setting

Hi, I have a storage account static website being accessed via Azure FrontDoor. It works well with "Public network access" option set to "Enabled from all networks". If I set it to "Enabled from selected VNETs and IPs" I'll…

Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
675 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
asked 2024-08-30T14:19:48.2533333+00:00
juni dev 336 Reputation points
commented 2024-09-30T08:39:06.41+00:00
juni dev 336 Reputation points
1 answer One of the answers was accepted by the question author.

Routing Issues with S2S VPN VNET Peered with ExpressRoute VNET

The Context: I have 3 VNETS (VNET1, VNET2, VNET3). VNET1 has a S2S VPN allowing on-prem devices to connect to Azure. VNET2 has an ExpressRoute allowing another subnet of on-prem devices to connect to Azure. VNET3 also has an ExpressRoute allowing another…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,868 questions
Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,527 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
373 questions
asked 2024-07-02T14:29:17.2566667+00:00
RahulRana-1085 30 Reputation points
commented 2024-09-29T13:37:23.43+00:00
KapilAnanth-MSFT 44,936 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

On-premises expressroute BGP is advertising 0.0.0.0/0 and using Azure Firewall to control traffic (including internet)

hi My environment is an on-premises expressroute BGP is advertising 0.0.0.0/0. I want to use Azure Firewall to control all traffic (including internet). See and discuss the architecture picture attached below. My guess is that we need to send the route…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
373 questions
asked 2024-09-18T03:07:24.1133333+00:00
romero 125 Reputation points
accepted 2024-09-26T21:10:28.6633333+00:00
romero 125 Reputation points
0 answers

When I send traffic to the firewall, my host cannot reach any powerapps

I have a Firewall Policy that has several Network and Application Rulesets. The host2 I'm having problems from are 10.0.3.6 , 10.0.3.8 and 10.0.5.4 on different subnets. I have IP Groups setup for the 10.0.3.* and the 10.0.5.* hosts. In my Network…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-19T21:28:53.8533333+00:00
JohnSebastian-3934 276 Reputation points
commented 2024-09-25T04:21:55.6833333+00:00
Sai Prasanna Sinde (Quadrant Resource LLC) 110 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Azure Hub Network with NVA and azure firewall and routing between VPN and Express route gateway through firewalls

Hi Team, I have attached the network diagram, Here is set up. There is HUB and Spoke topology with NVA. All traffic between on-premise and azure spoke is passing through NVA Third party location is connected through SDWAN VM over internet. SDWAN VM is…

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,527 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
373 questions
asked 2024-08-20T21:58:14.7633333+00:00
Siddhesh Rane 61 Reputation points
commented 2024-09-24T19:24:27.5933333+00:00
Siddhesh Rane 61 Reputation points
1 answer One of the answers was accepted by the question author.

Hub and two Spoke vnets with AFW in Hub and traffic from Expressroute

Hello, I have got problem with not going traffic via Azure Firewall from ExpressRoute to one of two spoke vnets(I don't see any traffic on Firewall logs but I can see traffic with tcpdump on VM in spoke). Traffic to on-prem via ExpressRoute works fine…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
Azure ExpressRoute
Azure ExpressRoute
An Azure service that provides private connections between Azure datacenters and infrastructure, either on premises or in a colocation environment.
373 questions
asked 2024-09-18T08:55:52.09+00:00
Sepski, Krzysztof Antoni 20 Reputation points
accepted 2024-09-24T05:57:34.8333333+00:00
Sepski, Krzysztof Antoni 20 Reputation points
1 answer

Azure firewall behavior if instances misbehave

Hello , I know the fact that Azure firewall starts with two virtual machines, just asking what the behavior will be if at the same the two virtual machines for some reason are not functioning properly?

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-12T11:14:49.2633333+00:00
Tarek Metwally 0 Reputation points
commented 2024-09-24T01:10:28.3333333+00:00
Sai Prasanna Sinde (Quadrant Resource LLC) 110 Reputation points Microsoft Vendor
1 answer

going with the application gateway in fornt of azure firewall does it lose the benefit of l7 load balancing

I have an Azure firewall in a hub and spoke architecture, and one of the spokes contains my web servers, for HTTPS filtering I have an application gateway with the WAF feature and l7 load balancing. I have a requirement to keep centralized security…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,063 questions
Azure Web Application Firewall
Azure Load Balancer
Azure Load Balancer
An Azure service that delivers high availability and network performance to applications.
437 questions
asked 2024-09-23T06:26:52.93+00:00
Mohammad Nemer 0 Reputation points
answered 2024-09-23T10:20:18.8833333+00:00
KapilAnanth-MSFT 44,936 Reputation points Microsoft Employee
1 answer

VNETs in different subscriptions not communicating with Azure Firewall

Having a head scratcher. Layout: Subscription 1: Includes: VNET A, VPN Gateway to Data Center, Firewall with Policy. Subscription 2: Includes: VNET B, computer Resources Spinning up a VM in VNET A I can communicate out and to the Data Center through the…

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,527 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
asked 2024-08-27T18:06:54.3866667+00:00
Mathew Miller 0 Reputation points
edited the question 2024-09-17T17:26:08.51+00:00
VarunTha 8,135 Reputation points Microsoft Vendor
1 answer

Azure Firewall has started NATing random traffic flows between VMs

Our monitoring system found a web site not responding last Saturday morning (24th August). Logs showed that it could no longer talk to its database. The web site is running on a VM -- VM1. The SQL Server is on VM2. They are on different subnets of the…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-03T10:06:08.6933333+00:00
Duncan Sinclair 0 Reputation points
commented 2024-09-13T04:29:03.9766667+00:00
KapilAnanth-MSFT 44,936 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

ICMP Timestamp Request Remote Date Disclosure Details - The remote host answers to an ICMP timestamp request.

how to resolve this or do we have any information if we can restrict on firewall

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-07-24T14:17:37.48+00:00
Shaweta Bhardwaj 30 Reputation points Microsoft Employee
commented 2024-09-12T10:56:11.56+00:00
KapilAnanth-MSFT 44,936 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Azure firewall - Firewall policy under "Policy" section is not showing any "Parent policy".

As a test, we have deployed Azure Firewall in a region. When I access the firewall, it has 2 Firewall policy (1- Policy and 2- Base Policy). My understanding is that Base Policy is considered as a Parent policy and just Policy is considered as a child…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2024-09-03T19:20:27.7133333+00:00
Rakesh Singh 205 Reputation points
accepted 2024-09-11T16:10:38.4533333+00:00
Rakesh Singh 205 Reputation points
0 answers

Using Azure Private Resolver with Firewall DNS proxy

Hi, I am currently looking at implementing Azure DNS private resolver (inbound and outbound endpoint subnets) within a hub-and-spoke network with the ultimate goal of resolving DNS to/from an on premise site located down a VPN connection and the spokes…

Azure DNS
Azure DNS
An Azure service that enables hosting Domain Name System (DNS) domains in Azure.
674 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,425 questions
asked 2024-09-10T10:39:50.1433333+00:00
Eddie Vincent 0 Reputation points
commented 2024-09-11T00:14:25.4333333+00:00
ChaitanyaNaykodi-MSFT 26,096 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

What are differences between Firewall DNS Proxy and DNS Private Resolver?

I am unsure which to choose Azure Firewall DNS Proxy and DNS Private Resolver as a DNS forwarder. I'd like to know the main differences and practical situations for each.

Azure DNS
Azure DNS
An Azure service that enables hosting Domain Name System (DNS) domains in Azure.
674 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
662 questions
asked 2023-05-17T13:49:53.06+00:00
ks 35 Reputation points
commented 2024-09-10T11:19:15.5833333+00:00
Eddie Vincent 0 Reputation points