Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
723 questions
0 answers
Azure Basic Firewall Public IP Egress calls
I have an azure basic firewall, From one of my VM egress call happening to a URL(Which is whitelisted). I have around 12 Public IPs attached to Firewall. How do I verify from which Public IP the request landed in target(no access logs available in…
Azure Firewall
Azure FastTrack
Azure FastTrack
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.FastTrack: This tag is no longer in use. Please use 'Azure Startups' instead.
78 questions
asked 2025-02-20T11:43:04.4666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 70%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
Deepaklal-FT
66
Reputation points
commented 2025-02-21T17:06:41.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 15%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPB%3C/text%3E%3C/svg%3E)
Praveen Bandaru
515
Reputation points Microsoft Vendor
1 answer
Network Hub and spoke
I have the following scenario, Virtual network gateway (only one) This network gateway has VPN IPSEC connected. This network gateway has VPN Point-to-Site (Aovpn) This network gateway provides the routing for other vnet using the architecture hub…
asked 2025-02-17T15:19:06.57+00:00
Allan Guerreiro
0
Reputation points
commented 2025-02-21T11:55:12.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Ganesh Patapati
3,690
Reputation points Microsoft Vendor
1 answer
Unexpected Network Traffic Reaching VM Despite NSG Configuration in Azure
We are experiencing an issue where network traffic is reaching our Virtual Machine, even though our Network Security Group (NSG) is configured to block this traffic. For example, traffic on port 80 is being logged by UFW on the VM, despite the NSG rules…
asked 2025-02-12T20:30:27.2933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 63%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
nma
5
Reputation points
commented 2025-02-21T11:24:34.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 5%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVD%3C/text%3E%3C/svg%3E)
VIVEK DWIVEDI
105
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How come Azure KeyVault Private DNS works differently to Azure SQL Servers?
I have recently started Private Endpointing all of our infrastructure. As we are in Hub to Spoke environment we are using one Private DNS for each resource type which is then linked to the spokes and Hubs. We then create private endpoints for each…
asked 2025-02-20T10:40:09.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 30%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELN%3C/text%3E%3C/svg%3E)
Liam Newton
0
Reputation points
commented 2025-02-21T09:37:13.5866667+00:00
Liam Newton
0
Reputation points
0 answers
Cannot connect to Application Service from the Application Gateway when Private endpoints and Virtual Network Integration
Cannot connect to Application Service from the Application Gateway when Private endpoints and Virtual Network Integration Application Gateway give 502 error
asked 2025-02-16T16:09:08.01+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 90%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EME%3C/text%3E%3C/svg%3E)
Morgan Ecklund
0
Reputation points
commented 2025-02-21T06:08:49.64+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 36%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Sarthak Agarwal
1
Reputation point Microsoft Employee
1 answer
One of the answers was accepted by the question author.
What I'm trying to accomplish vs. What I'm being charged for...Help
I'm trying to use Azure Free Account in a way that most probably are not used to seeing. I have a hobby of tracking and managing a statistics database for eSports on the side. I came across the free Azure account and it seemed like a good way to manage…
asked 2025-02-17T15:57:18.71+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 36%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Spencer Petrillo
20
Reputation points
accepted 2025-02-20T18:51:52.87+00:00
Spencer Petrillo
20
Reputation points
1 answer
Security and protection against ransomware/malware in Azure
We have VPN S2S connections from various locations. Plannign to deploy Azure Standard firewall. None of the VMs have public ips. We will be configuring azure sql managed instance with private endpoints and storage accounts with private links. Also will…
asked 2025-02-12T13:09:25.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 13%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
cloudseeker
0
Reputation points
commented 2025-02-17T14:53:06.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 17%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Rohith Vinnakota
2,720
Reputation points Microsoft Vendor
1 answer
Does Basic Azure Firewall supports X-FOrward-For
Does Basic Azure Firewall supports X-FOrward-For? How do I verify the client IP is passing to VM(apache2)?
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
723 questions
Azure FastTrack
Azure FastTrack
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.FastTrack: This tag is no longer in use. Please use 'Azure Startups' instead.
78 questions
asked 2025-02-10T13:52:27.39+00:00
Deepaklal-FT
66
Reputation points
commented 2025-02-17T14:47:51.2366667+00:00
Rohith Vinnakota
2,720
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Is there a limit of how many IP ranges can be in Source field in a single DNAT rule in Azure Firewall Standard?
Hi Is there a documented limit on the maximum number of IP address ranges that can be specified in the Source field in a single DNAT rule in Azure Firewall Standard SKU? I was looking at Policy Analytics for my Azure Firewall Policy, and 1 of the…
asked 2025-02-07T05:29:11.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 47%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Murali Kumar
20
Reputation points
accepted 2025-02-14T11:14:42.89+00:00
Murali Kumar
20
Reputation points
4 answers
internalserver error when deploying firewall
Have been unable to deploy Azure firewalls today, using either deployment pipelines or using the portal, even tried differenent tenant to rule out any forced policies, same error: { "code": "InternalServerError", …
asked 2023-12-05T14:57:13.9766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 93%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Allan Møller
0
Reputation points
commented 2025-02-13T17:24:06.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 44%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Gary Mclean
0
Reputation points
1 answer
Traffic not flowing via azure firewall when using site to site vpn
I have created a site-to-site connection between AWS and Azure. In Azure, I have a firewall in place. When the gateway connection is established, traffic is not flowing through the Azure firewall. However, when the gateway connection is disconnected or…
asked 2024-12-26T17:31:22.2366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 34%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Anushankar Konduri
0
Reputation points
answered 2025-02-13T11:07:44.8633333+00:00
Sarthak Agarwal
1
Reputation point Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Route only P2s traffic through firewall
I have a relatively simple network setup A spoke(192.168.0.1/24) and a hub network(172.17.32.0) .In the hub network I have a firewall in firewall subnet and a vpn gateway in gateway subnet.In the vpn gateway i have configured multiple s2s tunnels and …
asked 2025-02-07T07:23:27.2033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 23%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGG%3C/text%3E%3C/svg%3E)
George Geoffrick G
40
Reputation points
commented 2025-02-13T10:36:05.3233333+00:00
Sarthak Agarwal
1
Reputation point Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure firewall monitoring only
I'm looking to implement Azure firewall with FQDN restrictions but ideally I'd like to deploy it in some sort of "monitor only" mode that will let me view logs to determine which FQDNs should be allowlisted. Is that possible? Thank you
asked 2025-02-12T12:35:21.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 14.000000000000002%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELR%3C/text%3E%3C/svg%3E)
Luke Rosser
120
Reputation points
accepted 2025-02-12T13:51:18.9066667+00:00
Luke Rosser
120
Reputation points
1 answer
Traffic Forwarding from one VM to another VM in Azure
Hello, I am looking for a solution to forward traffic from a web VM to an app VM. Specifically, when a user tries to access the web VM on port 6545, the traffic should be routed through the web VM to the app VM on port 6767. Can this be achieved in…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 4%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Connecting Azure FrontDoor to Azure app services through VWAN integrated with Azure firewall
Here is the scenario for the setup we have: We have one subscription (HUB ) created to deploy secured Azure virtual WAN integrated with Azure firewall with Microsoft paired regions East US (primary region) and West US (secondary region). This is…
asked 2023-10-20T01:42:10.2666667+00:00
Suwarna S Kale
786
Reputation points
accepted 2025-02-10T21:41:42.79+00:00
Suwarna S Kale
786
Reputation points
2 answers
One of the answers was accepted by the question author.
Express Route and VPN together
Our scenario: We are planning to use Express Route, VWAN integrated with Azure Firewall in East US (primary site) and West US (secondary/DR site) and we will be connecting the on-premise data center with Express Route. Questions: If we are using the…
asked 2023-10-17T12:02:02.0033333+00:00
Suwarna S Kale
786
Reputation points
accepted 2025-02-10T21:38:11.2733333+00:00
Suwarna S Kale
786
Reputation points
1 answer
Adding firewall in front of web apps in Hub-and-Spoke architecture
Hi, I am shifting towards hub & spoke model in my Azure subscription so that all the traffic coming into my subscription goes through the firewall. I have multiple types of resources but I am more concerned about web apps and function apps. How can…
asked 2025-01-29T15:55:53.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 25%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENU%3C/text%3E%3C/svg%3E)
Najam ul Saqib
360
Reputation points
commented 2025-02-10T13:42:32.9166667+00:00
Praveen Bandaru
515
Reputation points Microsoft Vendor
9 answers
When to use Azure WAF or Azure Firewall ?
Hi Folks, Can anyone here please share some thoughts and comments of when to use Azure WAF or Azure Firewall? I have already existing Azure ExpressRoute so my Azure VMs can ping my OnPremise servers, and vice versa. My purpose here is to be able to…
asked 2020-11-15T13:17:27.597+00:00
EnterpriseArchitect
5,691
Reputation points
answered 2025-02-06T06:38:53.57+00:00
VIVEK DWIVEDI
105
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Unable to access API endpoint in AWS from Azure VM
Hello Team, I'm trying to ping one of the API endpoint which is hosted in AWS behind a loadbalancer from Azure VM. I'm getting request timeout error. I've allowed the Source (Azure VNnet CIDR) and Destination (AWS VPC CIDR) and port 443 in Azure…
asked 2025-01-30T09:43:50.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 16%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Mahadev, Rakesh [HAEA]
200
Reputation points
accepted 2025-01-31T14:39:21.32+00:00
Mahadev, Rakesh [HAEA]
200
Reputation points
1 answer
cannot read firewall log
When I try to run query against the firewall logs, below error returns: 'parse' operator: Failed to resolve scalar expression named 'msg_s' If the issue persists, please open a support ticket.
asked 2023-05-04T06:11:29.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 75%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK6%3C/text%3E%3C/svg%3E)
Kenneth 6318
0
Reputation points
commented 2025-01-29T13:06:36.6133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 18%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Mario Reissmann
0
Reputation points