Azure Firewall Migration to vWAN Hub

Eddie Vincent 85 Reputation points
2024-10-23T11:38:05+00:00

I have a question regarding migrating/replacing Azure Firewall (in this case standard Firewall) in a hub-and-spoke network, and replacing with a Azure secured VWAN hub.

I have looked at the following migration guide which includes secured WAN: https://learn.microsoft.com/en-us/azure/virtual-wan/migrate-from-hub-spoke-topology

It mentions creating a new policy within Firewall manager however if we have an existing Firewall policy attached to the standard firewall within the hub-and-spoke I assume this can be re-associated instead of having to recreate all the rules from scratch (since we have a few).

I'm aware that rules may have to be altered for the vwan hub (new) subnet however any best practices or things to avoid would be useful information - Thanks!

Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
233 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
702 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Rohith Vinnakota 1,515 Reputation points Microsoft Vendor
    2024-10-24T20:15:04.43+00:00

    Hi Eddie Vincent,

    Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.

    Yes, Firewall policy a global resource that can be used across multiple Azure Firewall instances in Secured Virtual Hubs and Hub Virtual Networks. Policies work across regions and subscriptions.

    Refer this link :

    Azure Firewall Manager policy overview | Microsoft Learn

    If you have any further concerns, please do not hesitate to contact us.We are pleased to help you.

    If the information is helpful, please click on "Upvote" and "Accept Answer" so that it would be helpful to other community members.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.