Azure Firewall and Inbound Filtering documentation

Hi! I have a question about the Azure Firewall documentation and the Knowledge Check section.

The documentation (although it does not explicitly say otherwise) focuses on the fact that the Azure Firewall service is not suitable for filtering inbound HTTP/S traffic. However, in the Knowledge Check section it points out that it is.

It is likely that it is a misinterpretation or that the documentation is indeed a bit confusing, to clear up doubts I prefer to share it with the community

Documentation

Azure Firewall provides inbound protection for non-HTTP/S protocols (such as RDP, SSH, and FTP), outbound network-level protection for all ports and protocols, and application-level protection for outbound HTTP/S.

Knowledge Check - Requirement

Network security. You need to filter HTTP(S) traffic from Azure to on-premises, and filter traffic outbound to the internet.

Knowledge Check - Correct Answer

Azure Firewall Correct. Azure Firewall can filter HTTP(S) traffic from Azure to on-premises and outbound to the internet.

In addition, other documentation for the service also mentions the same

Does Azure Firewall support inbound traffic filtering? Azure Firewall supports inbound and outbound filtering. Inbound protection is typically used for non-HTTP protocols like RDP, SSH, and FTP protocols. For inbound HTTP and HTTPS protection, use a web application firewall such as Azure Web Application Firewall.

adding that Azure Web Application Firewall is among the possible answers in the Knowledge Check section, but specifies it as an incorrect answer.

Thanks in advance for the help!

AL

This question is related to the following Learning Module