question

Chapter7-2723 avatar image
0 Votes"
Chapter7-2723 asked AndreasBaumgarten answered

Azure firewall

Hi,

Please reply me of below questions

1- Azure firewall is a PaaS service and what about NSG?

2- I read we can deply azure firewall centerlized. what does it mean? Can you give me a simple example?


Regards

azure-firewallazure-firewall-manager
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AndreasBaumgarten avatar image
0 Votes"
AndreasBaumgarten answered

Hi @Chapter7-2723 ,

regarding 1): NSGs are a part of the virtual network configuration. NSGs are Azure Resources ... but I am not sure to call a NSG a PaaS service.

regarding 2): In which context is the statement of a "centralized Firewall deployment"?


(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

Regards
Andreas Baumgarten

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Chapter7-2723 avatar image
0 Votes"
Chapter7-2723 answered

Regarding 2> Please look this article.

https://docs.microsoft.com/en-us/azure/firewall/central-management (second peragraph)


Also tell me what is meaning of "subscriptions in hub and spoke architectures" I could not get "hub" and "spoke"

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AndreasBaumgarten avatar image
0 Votes"
AndreasBaumgarten answered

Hi @Chapter7-2723 ,

hub and spoke describes a network topology (also known as "star network topology") where a central hub network is connected with multiple spoke networks.
The graphics of this network topology looks like a wheel with a central hub and spokes around. Or like a star.
https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/hub-spoke-network-topology

In a hub and spoke network placing the firewall in the central hub network might be the "centralized" context of the linked article. The firewall in the hub network can manage the network traffic from the hub and all the spokes.


(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

Regards
Andreas Baumgarten

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.