question

PorscheMe-6235 avatar image
0 Votes"
PorscheMe-6235 asked PorscheMe-6235 commented

What is this 13.86.101.172 IP Address referred in azure-quickstart-templates for creating Firewall

Azure Firewall Premium SKU

We are looking at Github samples [Create Firewall with firewall Policy][1] for creating Azure Firewall using ARM templates. The sample creates a 'time-windows' outbound NetworkRule to 13.86.101.172:123. Can someone tell me what is this 13.86.101.172 IP Address? Do we need to create this rule in our Production workload? [1]: https://github.com/Azure/azure-quickstart-templates/tree/0e4e31c3b7e91c5564738676f0cc01e91027ee57/101-azurefirewall-create-with-firewallpolicy-apprule-netrule-ipgroups

azure-firewallazure-firewall-manager
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

suvasara-MSFT avatar image
0 Votes"
suvasara-MSFT answered PorscheMe-6235 commented

@PorscheMe-6235, This is more towards windows time service. Necessary if you are looking for synchronization of time in your VM's. We do unblock UDP:123 on Windows Firewall for I/O so that the Windows Time service (W32Time) synchronizes the date and time for all computers running in Active Directory Domain Services (AD DS). Time synchronization is critical for the proper operation of many Windows services and line-of-business (LOB) applications.

The Windows Time service uses the Network Time Protocol (NTP) to synchronize computer clocks on the network. NTP ensures that an accurate clock value, or timestamp, can be assigned to network validation and resource access requests. 13.86.101.172 IP Address might be the Microsoft owned IP for central NTP server.


Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.



· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

This is bit scary because...

  1. The link doesn't explain what that IP Address was

  2. Is it Azure region specific?

  3. Are there any MUST services (such as time service) what we need to allow through the firewall



0 Votes 0 ·