Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
570 questions
1 answer
How to migrate Azure Firewall Policies/Configuration to a different Azure account?
What is the process for migrating or importing existing Azure Firewall Policies/Configuration to different Azure accounts? I have a "template.json" and "parameters.json" file from another Azure Firewall setup, and I want to import…
asked 2024-01-29T10:24:03.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jaikishan A Sah (jaisah)
0
Reputation points
commented 2024-02-02T09:19:13.4933333+00:00
KapilAnanth-MSFT
35,086
Reputation points Microsoft Employee
0 answers
Unable to connect to SFTP server in Azure from any machines in Azure since Azure Firewall configured
Hi, We have recently configured the Azure Firewall, and since then, connection to the SFTP virtual server in Azure has been failing for devices within Azure. It was working fine before we configured the Azure Firewall. However, connecting to the SFTP…
asked 2024-01-10T11:53:03.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 32%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPS%3C/text%3E%3C/svg%3E)
Pegah Sohrabi
0
Reputation points
commented 2024-02-01T12:45:41.44+00:00
GitaraniSharma-MSFT
47,421
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure governance and security compliance certificate query
Hi Team, For one of the customer, we have to provide governance and security compliance certificate based on Malaysia country to host Azure services. can you please provide any url where I can find them. I found below url where cannot see for security.…
asked 2024-01-29T07:04:07.6933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 81%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sanjay Singh
20
Reputation points
accepted 2024-01-30T23:19:56.6566667+00:00
Sanjay Singh
20
Reputation points
2 answers
How do i make API call's form microsoft azure databricks using a static IP address?
How do i make API call's form microsoft azure databricks using a static IP address? i am doing a get request from databricks - towards external source , To be more secure and safe - we want to whitelist only this IP (static IP from databricks ) on the…
asked 2024-01-11T15:01:20.8266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 5%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
Rahul Kishore
0
Reputation points
commented 2024-01-30T21:04:42.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
23,026
Reputation points Microsoft Employee
1 answer
I can't see an option to change firewall rules under setting in firewall
I want to add firewall rule under settings in azureFirewall but there is no option to do so
asked 2024-01-21T16:42:19.7366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 62%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Rishab Arya
0
Reputation points
commented 2024-01-30T14:24:33+00:00
GitaraniSharma-MSFT
47,421
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Setting up azure firewall premium policies
I am trying to implement Azure firewall premium for our existing infrastructure using terraform to enable the IDPS feature. But the main issue I am facing is the azure firewall policies(Dnat rules) which I created are not working or not getting attached…
asked 2024-01-23T16:17:49.2633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 83%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Reshma Nair
120
Reputation points
accepted 2024-01-30T08:08:01.76+00:00
Reshma Nair
120
Reputation points
1 answer
Azure routing through a firewall to get to a DB backend Database over a VPN
I have two Azure VNETs, One is a Management VNET containing a public facing Application Gateway with an Azure Premium Firewall behind that. The other is a DEV VNET with a subnet containing a private endpoint to an SQL database. I use a VPN Gateway to…
asked 2024-01-29T15:25:57.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 23%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Julian
0
Reputation points
answered 2024-01-30T04:58:38.8433333+00:00
KapilAnanth-MSFT
35,086
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Where does Azure Firewall send TCP RST packets during Virtual Machine Scale Set scale in (scale down)?
Currently we have connection losses in our network, these seem to coincide with Azure Firewall VM instance shutdowns. Therefore I better want to understand what happens. In the Load Balancer TCP Reset and Idle Timeout documentation I read that it’s…
asked 2024-01-17T12:39:56.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 74%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGJ%3C/text%3E%3C/svg%3E)
Gun, JP van der (Joost) - Beheer
20
Reputation points
accepted 2024-01-26T14:49:10.6066667+00:00
Gun, JP van der (Joost) - Beheer
20
Reputation points
1 answer
VPN Gateway Routing Issue
Hi All, I will explain the existing setup and the challenges we are facing now.. --> Here in this Azure Cloud infra, all remote users, Vendors, Branches are terminated/connected through Azure VPN Gateway.--> Among that, One of the S2S connections…
asked 2024-01-12T14:54:47.0533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 7.000000000000001%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECB%3C/text%3E%3C/svg%3E)
Charlie B
0
Reputation points
edited an answer 2024-01-25T14:24:08.3366667+00:00
GitaraniSharma-MSFT
47,421
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Firewall as NVA
Hi all, Hope you are doing well! Do I need to deploy a Virtual Network Gateway for spoke hub connectivity even if I deploy an Azure Firewall. If yes, how the routing will happen? Thanks
asked 2024-01-24T11:43:36.5366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Apurva Pathak
310
Reputation points
commented 2024-01-24T14:11:27.4933333+00:00
GitaraniSharma-MSFT
47,421
Reputation points Microsoft Employee
0 answers
DNS Resolution Issues across Hubs
I have an existing VWAN and single VHUb. The Existing setup. All that is shown here in Subscription A works great. The sub A hub does not have a Firewall at this time. The VNets that are peered with the existing Hub, all have their Vnet DNS set to…
Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
189 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
570 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
947 questions
asked 2024-01-16T16:56:27.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 11%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGB%3C/text%3E%3C/svg%3E)
Greg Bonk
21
Reputation points
commented 2024-01-24T06:48:00.9366667+00:00
KapilAnanth-MSFT
35,086
Reputation points Microsoft Employee
0 answers
AzureFW Deny rule is not output during connection troubleshooting
After verifying the connectivity troubleshooting below, We were able to confirm that no errors were output due to Deny in the AzureFW application rules. Access to https://www.example.com from VM2 is recognized as denied by AzureFW. ・Network …
asked 2024-01-24T01:54:10.4233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 11%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETY%3C/text%3E%3C/svg%3E)
Tsukuda Yusaku
0
Reputation points
commented 2024-01-24T04:38:01.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 0%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Silvia Wibowo
3,011
Reputation points Microsoft Employee
2 answers
Disabling/bypassing particular signature for a particular traffic in IDPS
Hello, There is a false positive alert in the IDPS logs and I am looking to bypass that particular signature ID for that particular traffic (source, destination and port), but it seems like there is not a way to do this in IDPS currently. I noticed there…
asked 2024-01-16T15:53:19.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 89%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Alex
305
Reputation points
commented 2024-01-22T06:55:58.59+00:00
KapilAnanth-MSFT
35,086
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Azure App Gateway with backend Static Website in Storage account
Hi, I was hoping you may be able to help with a problem I may have. I current have a Static Web Site hosted in a Storage Account. This static Website call a Function App API as the backend. We have deployed the access to the Web site and Function API…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 76%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
1 answer
Unable to establish connection between on-prem and Azure spoke vNet through Azure Firewall
We have a Hub and spoke configuration of vNets. Spokes are peered with Hub vNet which has Express route connectivity to on-prem. Hub has Azure Firewall with an IP address range of 53.x series like on-prem, and spoke has 172.x series. We are not able to…
asked 2024-01-11T07:32:58.36+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 90%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYR%3C/text%3E%3C/svg%3E)
Yakesh Ram
1
Reputation point
edited a comment 2024-01-15T14:12:43.55+00:00
GitaraniSharma-MSFT
47,421
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Azure Function Outboud TLS call via Azure Firewall - Can I use TLS Inscpection
Hi, I currently have 4 Functions Apps that I calling external 3rd party API endpoints to either push or pull data into development service. This is currently in development. I have recently been told by our Security Team that I need to pass this…
2 answers
tracert shows request time out in azure windows
tracert shows request time out for all the hops except the last hop no matter what hostname/ip. does anyone know how to fix is issue in azure? Windows PowerShell Copyright (C) 2014 Microsoft Corporation. All rights reserved. PS…
asked 2021-01-21T01:00:16.923+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 44%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Derek
6
Reputation points
commented 2024-01-11T05:48:38.55+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 35%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJX%3C/text%3E%3C/svg%3E)
Jiaqing Xu (Shanghai Wicresoft Co Ltd)
0
Reputation points Microsoft Vendor
1 answer
Why does Azure Data Studio (and SSMS) not honor my VPN IP address?
When I attempt to connect to an Azure Data Warehouse from Azure Data Studio (and SSMS) while on my corporate VPN the connection uses my ISP's IP address and not my VPN assigned IP address. How can we have the connection honor my VPN IP address?
asked 2020-08-21T19:43:28.717+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 36%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
jkreber
11
Reputation points
commented 2024-01-09T17:42:10.6066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 37%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEC%3C/text%3E%3C/svg%3E)
Eric Coffman
1
Reputation point
3 answers
Cant connect after adding default route
Having trouble with something I thought would be simple... Need to block internet traffic on specific Azure VM's to all but a select few sites. We have (2) groups of Azure VM's... With_Internet, basically unfiltered outbound traffic NO_Internet,…
asked 2024-01-03T18:05:29.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 79%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
-M
0
Reputation points
commented 2024-01-09T01:10:06.93+00:00
Silvia Wibowo
3,011
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Issue with VirtualNetwork service tag when using UDR for routing via Azure Firewall
Hi Experts, When I add a UDR on my Spoke Subnets to use Azure Firewall for default outbound (0.0.0.0/0 -> Azure Firewall IP), the Virtual Network service tag on the NSG attached to the Spoke Subnets gets 0.0.0.0/0 value. When I remove the UDR default…
asked 2023-05-08T10:30:35.6633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 4%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sibba Sailor
80
Reputation points
commented 2024-01-05T09:34:04.69+00:00
Sibba Sailor
80
Reputation points