Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
655 questions
1 answer
One of the answers was accepted by the question author.
Multiple public ips are not getting added in Azure FW
Hi, I am trying to add two public ips in Azure FW through power shell command as mentioned in MS documentation. However i could see that the two ips got created in the resource group and when i create the FW with these two ips, it got created…
asked 2020-11-30T09:14:54.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 67%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Ananya Sarkar
311
Reputation points
commented 2020-12-01T07:56:52.503+00:00
Ananya Sarkar
311
Reputation points
0 answers
Azure Virtual VM behind FW and Azure Monitor Log analytics
Hello Experts, I have an Azure FW that's managing inspection and routing for an azure vnet, I have observed that VM logs are not be ingested into the log analytics workspace. My question is there an application rule or FQDNS tag that I need to allow to…
asked 2020-11-26T16:58:54.53+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 84%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESL%3C/text%3E%3C/svg%3E)
Shola Lawani
531
Reputation points Microsoft Employee
commented 2020-11-30T19:42:09.73+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 36%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SaiKishor-MSFT
17,231
Reputation points
2 answers
One of the answers was accepted by the question author.
Azure Firewall Network Rules
Hello Experts, Quick question about Azure Firewall network rules...are they stateful? So if I create a network rule that "Allows" RDP into a VM from an On-prem network, is that rule bi-directional (inboud-outbound)?
asked 2020-11-24T11:45:01.627+00:00
Shola Lawani
531
Reputation points Microsoft Employee
accepted 2020-11-24T17:14:22.973+00:00
Shola Lawani
531
Reputation points Microsoft Employee
3 answers
Azure Firewall and Azure VPN Gateway
Hello experts, Quick question here when setting up Azure VPN Gateway for site to site VPN from On-prem to Azure for S2S connectiing and also using Azure FW for network perimeter filtering and inspection from On-prem to Azure. Now on the Gateway…
asked 2020-11-20T17:49:47.757+00:00
Shola Lawani
531
Reputation points Microsoft Employee
commented 2020-11-23T21:18:26.407+00:00
Shola Lawani
531
Reputation points Microsoft Employee
1 answer
Do Azure Firewall at VNet blocks any log analytics workspace data
I have a set of VMs spread across different VNets, these VMs logs data to Log Analytics workspace and these VNets are connected via Hub-Spoke topology. Looking to implement Azure Firewall at Hub to increase the security across my VNet resources. Now I…
asked 2020-11-11T08:39:48.017+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 36%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA9%3C/text%3E%3C/svg%3E)
AzureUser-9588
151
Reputation points
commented 2020-11-23T21:12:18.683+00:00
SaiKishor-MSFT
17,231
Reputation points
10 answers
One of the answers was accepted by the question author.
TCP Connections dropped after approx 5 mins of inactivity
I have the idle timeout set to 20 minutes. However, tests with a Python TCP client talking to a a Python TCP server using "epoll", give me an issue when the idle time is roughly 5 minutes of inactivity. I loose the last packet sent, and get an…
asked 2020-11-05T10:30:16.17+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 4%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Mike Taylor
116
Reputation points
accepted 2020-11-17T09:15:26.633+00:00
Mike Taylor
116
Reputation points
5 answers
One of the answers was accepted by the question author.
Firewall rules for SAS URI
Hi, I'm using Microsoft Azure Storage Explorer to upload pst files via SAS URI and import them to the user's mailboxes. Recently we installed the MASE on another server and I'm getting an error - upload failed. In the Firewall we see the following…
1 answer
One of the answers was accepted by the question author.
Regarding Azure service tags for NSGs/Firewall
I am exploring Azure service tags and I have referred microsoft's official site for this. I have tested the service tag "Internet" using some azure resources, however need further documentation to know how to test service tags like azure load…
asked 2020-11-02T16:35:19.097+00:00
Ananya Sarkar
311
Reputation points
accepted 2020-11-03T17:47:28.167+00:00
Ananya Sarkar
311
Reputation points
1 answer
One of the answers was accepted by the question author.
Builtin Azure Service that automatically updates the attack signature heuristically ?
Hi Experts, We have the need to secure the Application Gateway and hundreds of API exposed to the Internet as part of our production environment, Using the existing builtin, Azure services, How to make it secure from Unknown Threat or 0-day attack…
asked 2020-09-15T04:39:31.373+00:00
EnterpriseArchitect
5,316
Reputation points
commented 2020-10-06T05:32:04.21+00:00
GitaraniSharma-MSFT
49,481
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
View real time firewall logs?
what is the easiest way and/or best viewer to watch your real time network traffic through azure firewall and/or NSG's Log analytics/event hub? any way to just watch the traffic the way you would on a normal firewall with a connection monitor or at…
1 answer
One of the answers was accepted by the question author.
Ip spoofing attack in AKS
Hello, We are thinking to enable authorized IP ranges in aks to expose service only to my organisation. If we do not add application gateway or maximum we can add the small sku of app gateway then what are the chances that our service is safe from…
asked 2020-09-12T08:47:40.543+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 68%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Tanul
1,281
Reputation points
commented 2020-10-01T08:18:21.83+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 98%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
AndyLiu-MSFT
586
Reputation points
1 answer
One of the answers was accepted by the question author.
Do i need Azure Firewall in Azure Virtual WAN (HUB)
I'm setting up a S2S connection through Azure Virtual WAN with no access to the outside world other than the 2 sites and some things within Azure that are not available from the Internet. I'm wundering if i need the Azure Firewall in this setup ?
asked 2020-09-08T12:46:03.973+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 17%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Jan Strunk Nielsen
21
Reputation points
accepted 2020-09-29T10:25:52.517+00:00
Jan Strunk Nielsen
21
Reputation points
0 answers
Azure firewall exclusion not working.
Greetings. I've got two Azure SQL servers/ databases, one for DEV and one for Prod. Each server has the same firewall rules set up. We have a developer that can access DEV w no problem, but cannot access Prod and it throws up the normal "your IP…
asked 2020-09-21T22:50:55.893+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 26%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
chrisrdba
386
Reputation points
commented 2020-09-23T09:41:39.517+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 97%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Anurag Sharma
17,606
Reputation points
1 answer
Any need of firewall if IP are restricted?
Hello, We are using azure kubernetes service over 443 port. We have enabled the IP range restricted Vnet due to which the services are only accessible from our organization. It is kind of an intranet and nothing is exposed over internet. In addition, a…
asked 2020-09-05T06:37:05.43+00:00
Tanul
1,281
Reputation points
commented 2020-09-18T19:58:45.52+00:00
prmanhas-MSFT
17,891
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Storage Account Firewall Options & Overall Security
I'm going through a stretch of final testing of our Azure environment, and recently, I had to change the firewall settings on the main storage account from Selected Networks to All Networks to allow Automate run books access to files. Still being fairly…
asked 2020-09-15T13:48:25.797+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 11%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EED%3C/text%3E%3C/svg%3E)
Erin Dempster
21
Reputation points
commented 2020-09-17T13:03:26.4+00:00
Erin Dempster
21
Reputation points
1 answer
Azure SQL Data Sync fails for bulk data
I'm using Azure Data Sync to synchronize two databases Everything was working fine until a few days ago when I inserted around 30 users in the Hub Database. Since then I'm getting the following error. Sync failed with the exception…
2 answers
One of the answers was accepted by the question author.
ARM Deployment of IPGroups fails on Update: Conflict
Hello, we are trying to update IPGroups through an ARM deployment, but this fails with "Conflict" on some of the IPGroups. All resources included in the discussion are created via DevOps pipeline and ARM templates. Unfortunately, rerunning a…
asked 2020-07-17T09:32:30.287+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 25%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Christoph Distefano
101
Reputation points
accepted 2020-09-01T16:07:24.157+00:00
Christoph Distefano
101
Reputation points
1 answer
One of the answers was accepted by the question author.
Unable to connect to Azure SQL DW & DB via SSMS, SSDT - error 10060
Hi, I'm trying to connect to Azure SQL Data Warehouse via SSMS and SSDT from my local with SQL Authentication and AD universal MFA, but I'm unable to and getting error number 10060 (Connected host failed to respond ). I've added my client IP to…
asked 2020-08-05T16:25:52.757+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 21%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Neil Pereira
81
Reputation points
accepted 2020-08-26T16:15:13.157+00:00
Neil Pereira
81
Reputation points
2 answers
One of the answers was accepted by the question author.
Cannot bulk load because the file 'container' + file' could not be opened. Operating system error code (null).
I am not sure what is going on with this quation body it keeps nagging that there need to be at least 10 characters inside this body..... Loading a file from the Azure Blob storage should be relatively easy when you are working with a Azure SQL…
asked 2020-07-14T08:00:31.357+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 79%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJW%3C/text%3E%3C/svg%3E)
Jacobus Wooning
41
Reputation points
commented 2020-08-13T00:49:27.957+00:00
Mike Ubezzi
2,776
Reputation points
1 answer
Are webservers behind a WAF safe enough to be classed as trusted
Hi, I am after some advise on a hub and spoke design idea. If I have a hub that contains a firewall and a WAF where the WAF is forwarding traffic onto a webserver in a spoke virtual network. Would you then class that web server / virtual network as…
asked 2020-07-02T09:45:56.727+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 72%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Dan
176
Reputation points
commented 2020-08-04T12:52:52.677+00:00
GitaraniSharma-MSFT
49,481
Reputation points Microsoft Employee