Express Route and Azure Firewall
We have express route to on-prem and it is working fine. We are in the process of implementing Az Firewall but are having trouble getting the routing right. I know you cannot add routes to the Express Route subnet so how do we force traffic that…
Express Route Routing Issues (Azure to On-premises route)
Hi @GitaraniSharma-MSFT - We have performed the same setup from this article https://video2.skills-academy.com/en-us/answers/questions/860533/express-route-and-azure-firewall) We have 2 express route premium circuits (East US & South-Central US) with 3…
Azure Firewall
Hello, Currently i have 3 server with Public IP enabled, and each server have specific rule to allow some ports accessing from internet. What i do is block incoming connection on the NSG. If i have azure firewall, can i block incoming connection from the…
Hub and Spoke architecture traffic flow issue?
We have a hub and spoke architecture environment. We need communication from vm1 from spoke 1 to communicate to vm2 in spoke 2 using hub and azure firewall in hub vnet. We need to establish this connection without using Virtual Network Gateway. We…
Delay after whitelisting an IP address
Hi, I have a github action that builds and deploys a static website into a Azure Storage account. By default the storage account's firewall rules deny incoming connections so I need to whitelist the github runner's current IP for the duration of the…
Azure VM Access to the Internet via Azure Firewall
Dear Azure Team I am very careful to mess around with our firewalls. We have a number of private VMs in a subnet. The subnet is protected by firewall and there is no direct access to the internet. There is one server in this subnet that needs to connect…
Azure firewall backup with logic app
The backup works and it generate json files with few lines as backup file https://techcommunity.microsoft.com/t5/azure-network-security-blog/backup-azure-firewall-and-azure-firewall-policy-with-logic-apps/bc-p/4165254#M383 I see the restore process with…
Azure Firewall Session table
Hi Team, If we manage azure firewall policies through azure firewall manager then Is it possible to see traffic/connections/ session table of Azure firewall from firewall manager or from firewall itself ( Like how we can see traffic in Palo Alto or…
Azure Firewall Policy - Policy Analytics Stopped Working Suddenly
As title says, Policy Analytics suddenly stopped working/indexing the logs, so it no longer show traffic, hits etc. Only can see analytics from about 1 week ago and older now. No known changes done in the environment either, I tried to disable the Policy…
Internet intent on Azure firewall
Enabling Internet intent on the security configuration of the vhub immediately blocked RDP access to the on premise resources using public IP address. It will probably block web using natted public IP on prem too. Is there any remediation to it?
Azure Firewall Outbound DNAT rules
Hi, We are migrating DMZ services to our Azure environment with our Azure premium firewall. I have tested inbound DNAT from an external source without issue. Where we NAT one of the public IP addresses on the Azure firewall to an internal…
Azure firewall policy backup
I was trying this steps manually without the use of script but it appears that this backup does not work on a storage account with the private endpoints.…
Issue with Azure firewall
Hi , I am getting below error in the Azure Firewall when try to update the policies Failed to delete the rule 'rule-2'.application-resources-firewall-chlid-policy Failed with 1 faulted referenced firewalls It is deleted but still getting the error And…
How to preserve source IP in Azure Firewall
Our requirement is to preserve the source IP even when the traffic flows through the Azure firewall and then reaches the destination server. We should be able to see the source IP in the logs of the destination server instead of Azure firewalls IP as…
Azure Firewall- source IP for ingress traffic
what will be the source IP for ingress traffic from internet on Azure FW. I mean initially request will come from the Internet public IP but once it comes inside the network after passing Azure FW, source IP will be Internet public IP or Firewall private…
Azure Firewall Logical Unit and Throughput
Hello Experts, Would like to know throughput for single logical unit of Azure Firewall 'Standard' and single logical unit of Azure Firewall 'Premium' , if it is same or different. As per following Azure URL -…
Update of Azure Firewall Policies failes - faulted referenced firewalls
Hi all, I try to create a Firewall (vWAN Secured Hub) using an ARM Template (actually as part of a blueprint). The initial deployment works like a charm. But when I try to update the blueprint assignment and thus triggering a new deployment I get…
Azure Firewall inbound and Outbound Exceptions for APIM instance deployed in Internal VNet mode
Hi Community I'm planning to deploy an APIM instance in "Internal" VNet injection mode in a hub-spoke topology where APIM is deployed to spoke VNet and there's an Azure Firewall in the hub that police all the inbound and outbound traffic. UDRs…
How to get all firewall rules with all the properties via Azures Resource Graph?
Hi, I need help with proper formulation of a query that would give me all firewall rules with all properties so it can be saved as a CSV file. All rules from a particular directory.
Firewall creation is failing while creating through terraform.
Firewall deployment is failing through Terraform Status: "InternalServerError" │ Code: "" │ Message: "An error occurred." │ Activity Id: "" │ │ --- │ │ API Response: │ │ ----[start]---- │…