Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,551 questions
1 answer
my virtual machine cannot ping public IPs
Hello guys, I need help from everyone, my issue is with the public IP addresses that I cannot ping in my virtual machine. So if anyone can help me with this. I specified that the public IP address of my firewall is what works on my virtual machine but…
asked 2024-07-19T19:30:10.0233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 79%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
amadou diallo
0
Reputation points
edited an answer 2024-07-20T05:32:09.2933333+00:00
Andreas Baumgarten
103.6K
Reputation points MVP
1 answer
Azure WAF is very restricting
Hi In our Azure config, we have an ApplicationGW+WAF in front of APIM. So all external requests pass through the WAF before routing towards APIM. The WAF (owasp rules) seem to be very very restrictive. We get a lot of blocked requests due to rule…
asked 2023-12-08T09:43:45.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 43%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
David Vanden Bussche
25
Reputation points
commented 2024-07-19T13:24:07.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 21%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETD%3C/text%3E%3C/svg%3E)
Tony Daems
0
Reputation points
1 answer
Azure Firewall in VWAN Public IP
Hello! I currently have deployed a secured VWAN with an Azure Firewall. I am wanting my P2S VPN to come out as a static IP. I have 1 Public IP allocated to the Azure Firewall. However, I am not sure if these are Static or if they can change without…
asked 2024-07-17T13:27:27.7466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 6%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Trent Becker
31
Reputation points
commented 2024-07-18T12:26:14.1733333+00:00
Trent Becker
31
Reputation points
1 answer
Secure App service
We have several app services and its using access restrictions which lists all the blocked public IPs. Howevever, we want an efficient way to do blocking of IPs so im thinking of Azure Firewall will do the trick? Any suggestions? Thanks!
asked 2024-07-18T06:36:06.5666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 28.000000000000004%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPJ%3C/text%3E%3C/svg%3E)
Peter Johnson
0
Reputation points
commented 2024-07-18T10:53:20.2066667+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
What is the subnet for *.msftauth.net and *.msftauth.net ?
The application under test has multi factor authentication enabled. This functionality is working as expected. We have recently created a virtual machine which will be used for running load tests. When we open the application from this VM in particular,…
asked 2024-07-17T19:46:20.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 19%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Kar, Chirajeet
0
Reputation points
edited the question 2024-07-17T23:52:08.0866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
36,336
Reputation points Microsoft Employee
1 answer
I am unable to delete resources. The bill is showing in Free trial also.
I am unable to delete resources. The bill is showing in the free trial as well. I was unaware that a bill would be generated during a free trial. Please help me to delete the resources and help me to close the bill. I am not sure why the bill is showing.…
asked 2024-07-16T16:08:06.3466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 53%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)
RAJAT GUPTA
0
Reputation points
commented 2024-07-17T19:07:16.33+00:00
RAJAT GUPTA
0
Reputation points
1 answer
Internet Routing via Azure Firewall
Hell All. We have a hub and spoke set up within Azure, within our hub resides our azure firewall and a express route gateway. The hub has 2 spoke vnets peered, each subnet within the peered vnet, has a UDR with a entry 0.0.0.0/0 pointing to the private…
asked 2023-09-01T07:11:19.8466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 50%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJK%3C/text%3E%3C/svg%3E)
jitesh k
0
Reputation points
edited a comment 2024-07-17T16:13:08.93+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Database Access from A Different Virtual Network
Dear Azure Team, I have an azure managed mysql database in virtual network vnet1 and a virtual machine in vnet2. I am unable to get this VM to access the database. I have a hub-spoke architecture with both vnet1 and vnet2 peered with my hub-vnet with…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 21%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESO%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Routing Issues with S2S VPN VNET Peered with ExpressRoute VNET
The Context: I have 3 VNETS (VNET1, VNET2, VNET3). VNET1 has a S2S VPN allowing on-prem devices to connect to Azure. VNET2 has an ExpressRoute allowing another subnet of on-prem devices to connect to Azure. VNET3 also has an ExpressRoute allowing another…
asked 2024-07-02T14:29:17.2566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 73%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER1%3C/text%3E%3C/svg%3E)
RahulRana-1085
30
Reputation points
accepted 2024-07-15T18:11:00.6866667+00:00
RahulRana-1085
30
Reputation points
0 answers
Azure load balancer to NVA asymmetric traffic issue
Asymmetric traffic issue on network capture from a VM in another vent - Here is my design - I have VWAN with Azure firewall which yet to secured with intent as next phase of network migration. Therefore, please ignore vWAN and vHUB when it comes as a…
asked 2024-07-13T18:54:39.4933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 46%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
prasantc
901
Reputation points
commented 2024-07-15T10:54:25.44+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
2 answers
Sporadic Issues with Azure DevOps Agent Accessing Azure Storage Account Despite IP Whitelisting
I am writing to seek assistance with an issue we have been experiencing with our Azure DevOps agent (Microsoft-hosted) accessing our Azure Storage account. Despite adding the IP address of the Azure DevOps agent to the network rules of the storage…
asked 2024-07-11T06:42:10.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 14.000000000000002%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Schneider, Michael
60
Reputation points
answered 2024-07-15T07:01:38.9766667+00:00
Sumarigo-MSFT
45,406
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Firewall and outbound pings lost
outbound pings are allowed via policy, can see them leaving via the logs, no returned traffic comes back to complete the ICMP and the client behind the azure firewall shows timed out. what gives? do you have to specifically allow ICMP replies?
asked 2024-07-09T15:56:54.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJW%3C/text%3E%3C/svg%3E)
John Wirtz
20
Reputation points
commented 2024-07-12T14:47:09.0966667+00:00
John Wirtz
20
Reputation points
1 answer
Azure Firewall Policy - Policy Analytics Stopped Working Suddenly
As title says, Policy Analytics suddenly stopped working/indexing the logs, so it no longer show traffic, hits etc. Only can see analytics from about 1 week ago and older now. No known changes done in the environment either, I tried to disable the Policy…
asked 2024-06-12T08:51:29.74+00:00
Martin Cato Dahl
5
Reputation points
answered 2024-07-11T11:45:20.6366667+00:00
Martin Cato Dahl
5
Reputation points
1 answer
One of the answers was accepted by the question author.
Site-2-Site VPN with whitelisted IPs
Dear azure team, I setup S2S VPN from azure to an on-prem infrastructure. The status on azure portal says connected. The tunnels are up on both sides but I am unable to pass traffic through it. Pinging the private IP of the onprem systems is failing.…
1 answer
One of the answers was accepted by the question author.
Two NVAs (firewalls) inline in Azure
Hi, My client wants to put two firewalls inline as per security policy - Palo Alto and Checkpoint. I want to know: If this is possible in Azure to use two NVAs inline? Although above option is preferred, if we use Azure Firewall + one NVA, is this…
asked 2024-07-05T14:55:21.1733333+00:00
Rajiv Bansal
186
Reputation points
accepted 2024-07-10T04:47:55.98+00:00
Rajiv Bansal
186
Reputation points
3 answers
One of the answers was accepted by the question author.
Azure Firewall DNS
Hi, in our existing Azure Firewall configuration, under DNS, we have the DNS servers enabled with the default Azure provided DNS and the DNS proxy disabled. For all our other resources in Azure, we have 2 Azure domain controllers and these are also the…
asked 2024-07-04T10:32:11.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 21%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGA%3C/text%3E%3C/svg%3E)
Ghulam Abbas
191
Reputation points
answered 2024-07-05T10:44:42.65+00:00
Ghulam Abbas
191
Reputation points
1 answer
Azure private zone with on prem ADDNS
I had a requirement to use the Azure firewall proxy to capture and log DNS traffic comping Azure private link services. My plan was to setup conditional forwarder for all private DNS resources from on prem to Azure firewall using firewall proxy to DNS…
asked 2024-07-02T05:59:18.92+00:00
prasantc
901
Reputation points
commented 2024-07-04T14:15:04.36+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
2 answers
Express Route and Azure Firewall
We have express route to on-prem and it is working fine. We are in the process of implementing Az Firewall but are having trouble getting the routing right. I know you cannot add routes to the Express Route subnet so how do we force traffic that…
asked 2022-05-23T14:06:36.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 35%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
MDavis
26
Reputation points
commented 2024-07-03T13:31:02.44+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Inbound Service tags in Firewall rules not avalable in portal
we have a service bus configured in vnet using private endpoint. We are creating D365 plugins which will publish to a topic in the service bus. Since D365 is in MSIT. We require to allow the inbound for that traffic. So, planning to enable…
asked 2022-07-21T12:48:31.733+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 21%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKT%3C/text%3E%3C/svg%3E)
Kunal Tanti
26
Reputation points Microsoft Employee
commented 2024-07-03T11:36:30.7233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 4%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
NNIT-PHFA
0
Reputation points
0 answers
Express Route Routing Issues (Azure to On-premises route)
Hi @GitaraniSharma-MSFT - We have performed the same setup from this article https://learn.microsoft.com/en-us/answers/questions/860533/express-route-and-azure-firewall) We have 2 express route premium circuits (East US & South-Central US) with 3…
asked 2024-06-30T00:32:00.81+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 67%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Jaykishan Bairagi
0
Reputation points
commented 2024-07-03T06:03:35.1433333+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee