![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 16%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
674 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Just sharing the response received from the product regarding this question here for community benefit.
Based on the questions above
1: AFW Layer 4 configuration: is there a disruption to the data flow to the backend servers when changing AFW?
In case the firewall is deployed in 3 zones, zone aligned ones, meaning explicitly chosen all 3 zones during creating, then the firewall instances on the VM’s with the zone down will stop working, those connections will stop and the others operating vms will take them as they come again.
2: AFW Layer 7 configuration: How is the AZFW session state been handled, are they stateful sessions on all backend servers or are the sessions broken?
The sessions are stateful, hence the sessions on the VM’s that went down during one of the zones will be broken and need to be reestablished.
3: AFW Layer 7 with TLS inspection configuration: How is the AZFW session state been handled, are they stateful sessions on all backend servers or are the sessions broken?
same as above.
Hope this helps!
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.