How to migrate Azure Firewall Policies/Configuration to a different Azure account?
What is the process for migrating or importing existing Azure Firewall Policies/Configuration to different Azure accounts? I have a "template.json" and "parameters.json" file from another Azure Firewall setup, and I want to import…
Unable to connect to SFTP server in Azure from any machines in Azure since Azure Firewall configured
Hi, We have recently configured the Azure Firewall, and since then, connection to the SFTP virtual server in Azure has been failing for devices within Azure. It was working fine before we configured the Azure Firewall. However, connecting to the SFTP…
Azure governance and security compliance certificate query
Hi Team, For one of the customer, we have to provide governance and security compliance certificate based on Malaysia country to host Azure services. can you please provide any url where I can find them. I found below url where cannot see for security.…
How do i make API call's form microsoft azure databricks using a static IP address?
How do i make API call's form microsoft azure databricks using a static IP address? i am doing a get request from databricks - towards external source , To be more secure and safe - we want to whitelist only this IP (static IP from databricks ) on the…
I can't see an option to change firewall rules under setting in firewall
I want to add firewall rule under settings in azureFirewall but there is no option to do so
Setting up azure firewall premium policies
I am trying to implement Azure firewall premium for our existing infrastructure using terraform to enable the IDPS feature. But the main issue I am facing is the azure firewall policies(Dnat rules) which I created are not working or not getting attached…
Azure routing through a firewall to get to a DB backend Database over a VPN
I have two Azure VNETs, One is a Management VNET containing a public facing Application Gateway with an Azure Premium Firewall behind that. The other is a DEV VNET with a subnet containing a private endpoint to an SQL database. I use a VPN Gateway to…
Where does Azure Firewall send TCP RST packets during Virtual Machine Scale Set scale in (scale down)?
Currently we have connection losses in our network, these seem to coincide with Azure Firewall VM instance shutdowns. Therefore I better want to understand what happens. In the Load Balancer TCP Reset and Idle Timeout documentation I read that it’s…
VPN Gateway Routing Issue
Hi All, I will explain the existing setup and the challenges we are facing now.. --> Here in this Azure Cloud infra, all remote users, Vendors, Branches are terminated/connected through Azure VPN Gateway.--> Among that, One of the S2S connections…
Azure Firewall as NVA
Hi all, Hope you are doing well! Do I need to deploy a Virtual Network Gateway for spoke hub connectivity even if I deploy an Azure Firewall. If yes, how the routing will happen? Thanks
DNS Resolution Issues across Hubs
I have an existing VWAN and single VHUb. The Existing setup. All that is shown here in Subscription A works great. The sub A hub does not have a Firewall at this time. The VNets that are peered with the existing Hub, all have their Vnet DNS set to…
AzureFW Deny rule is not output during connection troubleshooting
After verifying the connectivity troubleshooting below, We were able to confirm that no errors were output due to Deny in the AzureFW application rules. Access to https://www.example.com from VM2 is recognized as denied by AzureFW. ・Network …
Disabling/bypassing particular signature for a particular traffic in IDPS
Hello, There is a false positive alert in the IDPS logs and I am looking to bypass that particular signature ID for that particular traffic (source, destination and port), but it seems like there is not a way to do this in IDPS currently. I noticed there…
Azure App Gateway with backend Static Website in Storage account
Hi, I was hoping you may be able to help with a problem I may have. I current have a Static Web Site hosted in a Storage Account. This static Website call a Function App API as the backend. We have deployed the access to the Web site and Function API…
Unable to establish connection between on-prem and Azure spoke vNet through Azure Firewall
We have a Hub and spoke configuration of vNets. Spokes are peered with Hub vNet which has Express route connectivity to on-prem. Hub has Azure Firewall with an IP address range of 53.x series like on-prem, and spoke has 172.x series. We are not able to…
Azure Function Outboud TLS call via Azure Firewall - Can I use TLS Inscpection
Hi, I currently have 4 Functions Apps that I calling external 3rd party API endpoints to either push or pull data into development service. This is currently in development. I have recently been told by our Security Team that I need to pass this…
tracert shows request time out in azure windows
tracert shows request time out for all the hops except the last hop no matter what hostname/ip. does anyone know how to fix is issue in azure? Windows PowerShell Copyright (C) 2014 Microsoft Corporation. All rights reserved. PS…
Why does Azure Data Studio (and SSMS) not honor my VPN IP address?
When I attempt to connect to an Azure Data Warehouse from Azure Data Studio (and SSMS) while on my corporate VPN the connection uses my ISP's IP address and not my VPN assigned IP address. How can we have the connection honor my VPN IP address?
Cant connect after adding default route
Having trouble with something I thought would be simple... Need to block internet traffic on specific Azure VM's to all but a select few sites. We have (2) groups of Azure VM's... With_Internet, basically unfiltered outbound traffic NO_Internet,…
Issue with VirtualNetwork service tag when using UDR for routing via Azure Firewall
Hi Experts, When I add a UDR on my Spoke Subnets to use Azure Firewall for default outbound (0.0.0.0/0 -> Azure Firewall IP), the Virtual Network service tag on the NSG attached to the Spoke Subnets gets 0.0.0.0/0 value. When I remove the UDR default…