685 questions with Azure Firewall tags

Sort by: Updated
0 answers

Azure Firewall Policy Analytics: "rules with multiple IP addresses"

We started using Policy Analytics and I have the following issue: The 'Rules with multiple IP addresses' the pane on the Insights tab shows '6 rules with more than 10 source IPs'. When I click on 'See recommendations' I get a list of over 50…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-19T09:40:20.1366667+00:00
Robbert K 1 Reputation point
commented 2024-11-21T09:10:36.4133333+00:00
Robbert K 1 Reputation point
2 answers One of the answers was accepted by the question author.

Can I temporarily enable Azure Firewall on a demo environment for testing, and then remove it to stop incurring firewall costs once I apply the configuration to production?

Can I temporarily enable Azure Firewall on a demo environment for testing, and then remove it to stop incurring firewall costs once I apply the configuration to production? Does Azure Firewall incur costs for just being applied to a subnet or VNet, or…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,752 questions
Azure Web Application Firewall
Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
95 questions
asked 2024-11-20T07:06:53.8366667+00:00
chitra manju 20 Reputation points
accepted 2024-11-21T05:08:50.4866667+00:00
chitra manju 20 Reputation points
0 answers

Logged Traffic in Azure Firewall does not match Source and Destination defined in Rules

When checking the Logs of our Azure Firewall in Premium SKU I noticed very strange behavior. The source AND destination for allowed traffic do not match the defined rule that allegedly allowed the traffic. Example: I defined a rule like this: NameSource…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-19T15:34:02.0066667+00:00
Lukas Lohrsträter 0 Reputation points
edited a comment 2024-11-20T13:21:40.02+00:00
Lukas Lohrsträter 0 Reputation points
0 answers

Azure Firewall Policy Analytics: "Rules with low utilization" 60/90 day time period

I have the following issue with Policy Analytics: When viewing 'Rules with low utilization' I want to change the time period to 90 days (using the cog in upper right of the pane), but the options for 60 and 90 days are greyed out. I can only select 30…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-19T09:43:35.1533333+00:00
Robbert K 1 Reputation point
commented 2024-11-19T19:00:29.8966667+00:00
Ganesh Patapati 1,670 Reputation points Microsoft Vendor
1 answer

Difficulty Identifying Edited Rules in Azure Firewall Logs via KQL

Hello, community! I'm having trouble identifying specific changes to Azure Firewall rules through KQL (Kusto Query Language). After modifying certain firewall rules, I can see that edits have occurred through the firewall’s logs tab (where it shows a…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
95 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,172 questions
asked 2024-11-07T14:16:55.0666667+00:00
Hyago Santana Mariano 20 Reputation points
answered 2024-11-18T19:39:37.2666667+00:00
Rohith Vinnakota 1,160 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Azure Firewall: lack of service tag: Internet / allow access to the Internet on the specific port

Hi all, I tried to use service tag "Internet" on the Azure Firewall but I see that it's not available in this product (https://learn.microsoft.com/en-us/azure/virtual-network/service-tags-overview#available-service-tags) Case Environment 2…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2023-11-13T10:57:37.9633333+00:00
Bart Olejnik 125 Reputation points
commented 2024-11-17T05:16:34.83+00:00
KapilAnanth-MSFT 47,206 Reputation points Microsoft Employee
1 answer

closed ports 443 and 80 on all my VM's

my firewall is open for all inbound ports in order to troubleshoot the issue but I am still having that my only two ports is closed 443 and 80 only but all other ports are open in all my VM's . I have a peering network between two VNET is this where came…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-06T09:47:22.34+00:00
Tom 0 Reputation points
commented 2024-11-12T15:34:55.2666667+00:00
Ganesh Patapati 1,670 Reputation points Microsoft Vendor
0 answers

Site to Site VPN Connection

I have configured site to site VPN as per the Microsoft documentation. We have created: Vnet Vnet Gateway Local network gateway Connection We have configured with all the client's requirement. We are seeing connection status: Unknown We have also created…

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,565 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,532 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
926 questions
asked 2024-10-25T12:40:28.9+00:00
VATIKA SAXENA 0 Reputation points
commented 2024-11-12T07:40:16.8766667+00:00
Sai Prasanna Sinde 1,265 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

How can I get sorted Hit count in the Traffic Flows tab in Azure Firewall Policy Analytics?

Hi, we are planning a larger network change and to prepare for that we want to make sure we are aware of the most common traffic patterns within our network. Thus, we turned to Azure Firewall Policy Analytics as it could be a great tool to better…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-08T14:43:27.15+00:00
Karl-Petter Elliot Åkesson 40 Reputation points
accepted 2024-11-12T07:38:42.98+00:00
Karl-Petter Elliot Åkesson 40 Reputation points
3 answers

Need to find Top talkers from Azure Firewall network Logs

I want a KQL query and configuration settings which can give me Azure firewall network rule logs with column having details for SentBytes and received bytes details for each packet.

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-05T10:20:11.85+00:00
Shramik Ghadigaonkar 0 Reputation points
commented 2024-11-08T01:17:02.9533333+00:00
ChaitanyaNaykodi-MSFT 26,526 Reputation points Microsoft Employee
0 answers

How to effectively tune Azure WAF without exhausting too many resources

We have Azure WAF rules in prevention mode in both Azure Front Door and APIM gateway. We are facing this issue for a long term due to so many false positives blocking requests from our end users, frustrating us and users as there is no predictive…

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,189 questions
Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
696 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-07T15:32:30.6733333+00:00
Jyotirmoy Pan 0 Reputation points
commented 2024-11-07T19:48:33.59+00:00
ChaitanyaNaykodi-MSFT 26,526 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

On premise network routing to internet via azure s2s

I have a test device that works on us internet only. we are the organization working for US clients. So to make the device work for test purpose we need to route all traffic from device via azure to internet. How can we do that please help me to find me…

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,565 questions
Azure Traffic Manager
Azure Traffic Manager
An Azure service that is used to route incoming network traffic for high performance and availability.
128 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,532 questions
asked 2022-05-19T16:35:10.377+00:00
Niraj Shakya 21 Reputation points
commented 2024-11-06T20:47:27.5233333+00:00
Steffen Schuler 0 Reputation points
1 answer One of the answers was accepted by the question author.

Is there a need to configure any port on Firewall for Azure Arc inbound connectivity?

I want to know whether AzureArc extensions like AMA, WAC, ESU, HybridWorker etc need any inbound ports to be opened on Firewall? The outbound connectivity is public via the internet. Nothing configured for Inbound specifically. A lot of these extensions…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-11-05T11:48:03.7733333+00:00
CloudMan 20 Reputation points
commented 2024-11-06T07:49:14.61+00:00
CloudMan 20 Reputation points
3 answers

How to find azure firewall rules using KQL

Hi Team, We are currently having an azure firewall in place and also diagnostic settings are enabled to log the information in Log Analytics Workspace. However, when I run the below query I'm not getting any results: AzureActivity | where…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2023-02-16T01:00:28.5766667+00:00
Mohit Kumar 0 Reputation points
commented 2024-11-05T09:37:19.7866667+00:00
Shramik Ghadigaonkar 0 Reputation points
1 answer

Unable to bypass network traffic through firewall, if private link is configured for storage account.

I have a firewall configured in subnet x in my vnet. I also have an aks cluster launched in the same vnet, within subnet y. I have configured a private endpoint for a storage account, and am trying to access the same from my aks subnet, which is…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,532 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
517 questions
asked 2024-11-04T04:49:13.8666667+00:00
Paritosh Kabra 0 Reputation points
answered 2024-11-05T05:57:07.4166667+00:00
KapilAnanth-MSFT 47,206 Reputation points Microsoft Employee
1 answer

Trying to open ldap port on azure fw but it just plain wont open

Hi everyone, please excuse my lack of knowledge here as I am trying to learn as I go. I have a Synology NAS device at my office that I would like to connect with my Azure Ad so that I can pass authentication for sharing permissions to the NAS. I am…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-10-31T07:56:02.9733333+00:00
Adriaan Cilliers 1 Reputation point
answered 2024-11-04T11:02:42.03+00:00
KapilAnanth-MSFT 47,206 Reputation points Microsoft Employee
0 answers

How do I configure an inbound NAT rule in Azure Firewall to point at an Azure Container App?

The instructions to filter inbound traffic uses a Virtual Machine with a private IP address. If I set up a Container Apps Environment with a subnet and a Container App with VNet only ingress, the Container App replica doesn't have a private IP available.…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Container Apps
Azure Container Apps
An Azure service that provides a general-purpose, serverless container platform.
456 questions
asked 2024-10-14T15:43:46.87+00:00
Christopher Febles 0 Reputation points
commented 2024-10-30T18:20:29.58+00:00
Christopher Febles 0 Reputation points
1 answer One of the answers was accepted by the question author.

Azure Firewall DNS Proxy & DNS Private Resolver

I am trying to achieve a setup where I have the following main components. Hub vnet 10.0.0.0/23 This has a VPN connection to on-premises This has a Azure Firewall Shared services vnet 10.0.3.0/24 This has DNS Private Resolver With inbound and…

Azure DNS
Azure DNS
An Azure service that enables hosting Domain Name System (DNS) domains in Azure.
696 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,532 questions
asked 2024-10-22T10:53:26.32+00:00
Joni Nieminen 20 Reputation points
accepted 2024-10-28T21:01:52.01+00:00
Joni Nieminen 20 Reputation points
8 answers

When to use Azure WAF or Azure Firewall ?

Hi Folks, Can anyone here please share some thoughts and comments of when to use Azure WAF or Azure Firewall? I have already existing Azure ExpressRoute so my Azure VMs can ping my OnPremise servers, and vice versa. My purpose here is to be able to…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
Azure Web Application Firewall
Azure Firewall Manager
Azure Firewall Manager
An Azure service that provides central network security policy and route management for globally distributed, software-defined perimeters.
95 questions
asked 2020-11-15T13:17:27.597+00:00
EnterpriseArchitect 5,411 Reputation points
answered 2024-10-26T23:21:11+00:00
Ugacomp Technologies 0 Reputation points
1 answer

Azure Firewall Migration to vWAN Hub

I have a question regarding migrating/replacing Azure Firewall (in this case standard Firewall) in a hub-and-spoke network, and replacing with a Azure secured VWAN hub. I have looked at the following migration guide which includes secured WAN:…

Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
229 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
685 questions
asked 2024-10-23T11:38:05+00:00
Eddie Vincent 20 Reputation points
answered 2024-10-24T20:15:04.43+00:00
Rohith Vinnakota 1,160 Reputation points Microsoft Vendor