Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
622 questions
2 answers
ASE v3 questions
Hi everyone, I need to create an Azure infrastructure to host our web apps in a secure way using ASE v3. The ASE v3 will contain more than 5 app services all with a custom domains (multi-site situatioin: for example site1.domain, site2.domain,…
asked 2021-01-10T18:56:51.057+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 59%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matt Darket
1
Reputation point
commented 2021-02-08T20:02:06.857+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 52%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Mitch Buenaventura
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Firewall traffic
Hi all, I have a simple environment, 2 subscriptions which are peered together, one subscription has a S2S connection to on-premise. I would like to introduce an Azure firewall and would like to know if the following is possible. Only traffic between…
asked 2020-12-15T10:07:51.707+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 4%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Alan Curtis
21
Reputation points
commented 2021-02-01T06:40:30.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 59%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
smail Bouabdallah
1
Reputation point
2 answers
Azure firewall not work as expected
Hi, I have an strange issue with az firewall. We have deployed it in a hub an spoke arquitecture. We have configured different route tables that forze the traffic between different vnets and subnets thought it. To deploy different rules we have been…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 2%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
2 answers
Azure FW with VM NIC shows no internet access
Hello Experts, So I have a small lab environment with a hub (Azure FW) and two Spokes (with VMs). I'm redirecting all traffic 0.0.0.0/0 via the firewall using UDRs. However, I have noticed that the VMs NIC (in the spokes vnet) in this set up…
asked 2020-10-23T16:54:25.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 84%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESL%3C/text%3E%3C/svg%3E)
Shola Lawani
531
Reputation points Microsoft Employee
commented 2021-01-14T00:30:03.68+00:00
SUNOJ KUMAR YELURU
14,016
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
What is a SNAT port of a Azure FW?
Hi, Just need to clear a doubt. What is the SNAT port of an azure FW, for which the SNAT port utilization metrics of the FW gets generated? Is it a single port or any port from 0-65,535? Is there way to engage only one SNAT port for outbound traffic…
asked 2021-01-05T14:32:39.93+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 67%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Ananya Sarkar
311
Reputation points
commented 2021-01-06T05:40:59.587+00:00
Ananya Sarkar
311
Reputation points
3 answers
One of the answers was accepted by the question author.
how to monitor Azure firewall health
What are the best ways we can monitor azure firewall health? Is there any specific metrics/logs using which we can do that? Can you plz provide some use cases or log query?
asked 2020-12-08T13:45:29.67+00:00
Ananya Sarkar
311
Reputation points
commented 2021-01-05T15:22:05.557+00:00
Ananya Sarkar
311
Reputation points
1 answer
One of the answers was accepted by the question author.
How to run a script with multiple commands in linux VM
I have an azure Linux VM which is behind a firewall and I want to generate outbound traffics automatically by running a script, so it will generate SNAT port utilization metrics of the Firewall. Is it possible in Azure and how?
asked 2021-01-04T16:58:06.56+00:00
Ananya Sarkar
311
Reputation points
commented 2021-01-05T14:14:58.017+00:00
Ananya Sarkar
311
Reputation points
1 answer
Enabling WAF in Firewall
How to enable WAF feature in Azure Firewall?
asked 2020-12-30T18:05:07.467+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 38%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Mohammad Asif (Consultant)
1
Reputation point
answered 2020-12-30T20:25:31.467+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 36%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SaiKishor-MSFT
17,216
Reputation points
0 answers
How to generate inbound/outbound threat intel attack for Azure FW
I know if i have NAT rule associated with my Azure FW, it generates some inbound brute force threat intel alerts, but if I want to create threat intel alert from my system deliberately as part of security testing, so it can generate inbound/outbound…
asked 2020-12-16T15:36:46.303+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-30T20:00:55.697+00:00
SaiKishor-MSFT
17,216
Reputation points
1 answer
One of the answers was accepted by the question author.
Connect to AzureVM that is accessible only from VNET using Public DNS
Hi. I want to have a setup with multiple peered VNets and VPN Gateway for clients to join these networks. Right now we have a VM protected with a firewall by IP, but I want to have access only from VNet. When I do that I lose the ability to use the…
asked 2020-11-19T07:21:01.957+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 9%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Alexander Shushanidze
41
Reputation points
accepted 2020-12-24T07:34:30.09+00:00
Alexander Shushanidze
41
Reputation points
3 answers
One of the answers was accepted by the question author.
Regarding Network Insights & Metrics for Azure
Hi, I am trying to get the information regarding the Network Insights & Metrics for Azure. How to query the cloud environment for key network health & governance data points for the below points? a. Azure NSGs or Azure Firewall without a…
asked 2020-12-05T17:03:31.187+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-22T17:23:47.64+00:00
suvasara-MSFT
10,026
Reputation points
2 answers
How to retrieve Azure FW & NSG info based on there tags?
1) How to retrieve Azure FW & NSG info based on there tags? I have a FW that have a tag (name = test), so I tried this query but its returning all the firewalls and not the filtered list Get-AzFirewall | Where-Object Tags -eq $name | Select-Object…
asked 2020-12-10T05:00:58.663+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-22T09:23:00.613+00:00
Ananya Sarkar
311
Reputation points
2 answers
One of the answers was accepted by the question author.
Azure Firewall and NSG configuration?
Hi People, I've got 40+ VMs in Azure Resource group located in different regions. I wanted to allow only 10 VMs to access the internet and the rest is just Corporate Intranet only (via Express Route to my OnPremise network). Should I deploy one…
asked 2020-12-15T12:05:06.457+00:00
EnterpriseArchitect
5,036
Reputation points
commented 2020-12-18T02:00:12.537+00:00
EnterpriseArchitect
5,036
Reputation points
3 answers
One of the answers was accepted by the question author.
Is it possible to add a private ip to Azure firewall if it is not getting created automatically
Hi, We are trying to provision Azure FW from external kubernetes cluster through Infrastructure as code service. However after provisioning, the FW is getting created but its private ip is not getting generated. Is there a way to add a private ip to…
asked 2020-12-09T10:38:32.453+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-17T07:55:08.01+00:00
Ananya Sarkar
311
Reputation points
2 answers
One of the answers was accepted by the question author.
Regarding Azure Rest Api functionalties
Hi, Can we do the following operations through Azure Rest Api call? Vnet peering Create log analytics workspace and add it to a FW/NSG Create storage account & add it to a FW/NSG?
asked 2020-12-15T07:10:46.333+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-16T09:19:53.173+00:00
GitaraniSharma-MSFT
49,171
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to visualize azure firewall metrics in log analytics workspace
Earlier there was a "view designer" section inside log analytics workspace, where importing a .omsview file, we can create visualization of azure firewall metrics, like in bar chart or pie chart etc. Now I dont see this view designer tab. In…
asked 2020-12-12T11:19:50.59+00:00
Ananya Sarkar
311
Reputation points
commented 2020-12-16T06:07:35.35+00:00
GitaraniSharma-MSFT
49,171
Reputation points Microsoft Employee
6 answers
One of the answers was accepted by the question author.
Unable to retrieve azure firewall log from portal
Hi, I was trying to generate log for azure threat intelligence but I am facing an issue. I am inside the azure FW -> Logs and clicked on "run" for Threat Intelligence rule log data. However its showing, the below error message, …
asked 2020-11-24T16:07:21.627+00:00
Ananya Sarkar
311
Reputation points
answered 2020-12-12T01:42:54.527+00:00
SaiKishor-MSFT
17,216
Reputation points
0 answers
Stackpath IP block whitelist
I am just testing Azure, and trying to use it with Stackpath - whitelisting their IP's throws up hundreds of errors, e.g. "The subnet 81.171.61.0/24 overlaps the subnet 81.171.61.0/24" The IP Blocks is from their site…
asked 2020-12-04T09:47:04.913+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 19%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JH
1
Reputation point
commented 2020-12-10T19:25:20.61+00:00
SaiKishor-MSFT
17,216
Reputation points
3 answers
One of the answers was accepted by the question author.
Need valid business use cases/scenarios to test Azure firewall & NSG rules
Hi, I am exploring Azure firewall & NSGs and looking for some FW (NAT/Network/Application) & NSG (inbound & outbound) rules that are used in real business, which I can use in my testing and also can expect related logs on these. Can you…
asked 2020-12-02T17:59:54.773+00:00
Ananya Sarkar
311
Reputation points
answered 2020-12-04T15:57:45.51+00:00
Ananya Sarkar
311
Reputation points
0 answers
paymant a subscription
How can i pay if i cant wrote here anything http://joxi.ru/823DdQ7T8DgXZA? why i cant paymant a subscription?
asked 2020-09-22T09:19:39.09+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 90%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Alex
1
Reputation point
commented 2020-12-04T09:49:59.407+00:00
suvasara-MSFT
10,026
Reputation points