Share via

Azure Firewall Logical Unit and Throughput

Raviraj Velankar 86 Reputation points
2024-05-29T18:11:31.1833333+00:00

Hello Experts,

Would like to know throughput for single logical unit of Azure Firewall 'Standard' and single logical unit of Azure Firewall 'Premium' , if it is same or different.

As per following Azure URL - https://learn.microsoft.com/en-us/azure/firewall/firewall-faq

It says "Azure Firewall's initial throughput capacity is 2.5 - 3 Gbps and it scales out to 30 Gbps for Standard SKU and 100 Gbps for Premium SKU"

However as per following Azure URL - https://learn.microsoft.com/en-us/azure/firewall/firewall-performance

"The following throughput numbers are for an Azure Firewall Standard and Premium deployments before autoscale (out of the box deployment). Azure Firewall gradually scales out when the average throughput and CPU consumption is at 60% or if the number of connections usage is at 80%. Scale out takes five to seven minutes. Azure Firewall gradually scales in when the average throughput, CPU consumption, or number of connections is below 20%.

When performance testing, make sure you test for at least 10 to 15 minutes, and start new connections to take advantage of newly created firewall nodes "

Firewall use case Throughput (Gbps)
Standard
Max bandwidth up to 3
Standard Max bandwidth up to 3
Premium Max bandwidth up to 18

Did not understood for Azure FW Premium SKU- how 18 Gbps derived .

If I consider single 'logical unit' throughput is same of Azure FW 'Standard' and 'Premium' which is between 2.5 Gbps - 3 Gbps or if not the case then what is throughput of single logical unit for Azure FW 'Standard' and 'Premium'.

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
596 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. ChaitanyaNaykodi-MSFT 24,231 Reputation points Microsoft Employee
    2024-06-04T20:49:11.8466667+00:00

    @Raviraj Velankar

    Thank you for your patience here I received an update on this issue.

    In the performance document it is stated that

    User's image

    The out of the box deployment of Azure Firewall consists of two virtual machine instances, so the per instance Azure Firewall Standard SKU can scale up to 1.5 Gbps and Azure Firewall Premium SKU can scale up to 9 Gbps.

    So as per your question above single 'logical unit' throughput is not same for Azure FW 'Standard' and 'Premium'.

    The information in the FAQ needs to updated to include Premium SKU numbers. I will work with the team an get the FAQ updated.

    Hope this answers your query. Please let me know if you have any additional questions. Thank you!

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments