Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
608 questions
1 answer
Azure Firewall: Identifying SourceIPs with High SNAT Port Utilization
I received an alert that the SNAT port utilization for my Azure Firewall is high. Is there a way to see which SourceIPs are consuming more SNAT port data? I tried using a Kusto query but was unsuccessful. Can anyone help me identify the SourceIPs with…
asked 2024-04-19T10:09:20.6333333+00:00
SafiyullahSA
65
Reputation points
answered 2024-04-21T23:43:04.7766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
24,656
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Trouble Opening Port 443 (HTTPS) in Azure Despite Configuring NSG: Need Assistance!
I've correctly set up inbound rules in the Network Security Group (NSG) on Azure to open ports 80 and 9000, and both are functioning as expected. However, I'm encountering difficulties opening port 443 (HTTPS). Even after adding a specific inbound rule…
asked 2024-04-14T19:33:05.8766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 8%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAO%3C/text%3E%3C/svg%3E)
Adão Braga
20
Reputation points
accepted 2024-04-18T12:17:17.8666667+00:00
Adão Braga
20
Reputation points
0 answers
How to create a Workspace Managed Virtual Network Isolation if the Microsoft Documentation is outdated?
Hello! I am following the step by step to configure an Azure Machine Learning Workspace (https://learn.microsoft.com/en-us/azure/machine-learning/how-to-managed-network?view=azureml-api-2&tabs=azure-cli) that can connect to a Azure Storage Account…
asked 2024-04-17T01:42:23.5833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 83%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFA%3C/text%3E%3C/svg%3E)
Felix A Ariza N
0
Reputation points
commented 2024-04-17T12:16:45.22+00:00
romungi-MSFT
43,691
Reputation points Microsoft Employee
1 answer
Setting up Azure Firewall for network perimeter
How can I set up Azure Firewall for better security and at more of the resource group level? I already have a network security group (NSG) set up with IP whitelisting for an exposed endpoint, but I'm not sure how to connect the filtered traffic to the…
asked 2024-04-16T14:10:38.7166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 25%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Anmol Arora
0
Reputation points
answered 2024-04-17T12:15:41.1166667+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
7 answers
When to use Azure WAF or Azure Firewall ?
Hi Folks, Can anyone here please share some thoughts and comments of when to use Azure WAF or Azure Firewall? I have already existing Azure ExpressRoute so my Azure VMs can ping my OnPremise servers, and vice versa. My purpose here is to be able to…
asked 2020-11-15T13:17:27.597+00:00
EnterpriseArchitect
5,136
Reputation points
answered 2024-04-16T12:18:12.6+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 96%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
carlintveld
26
Reputation points
1 answer
cannot read firewall log
When I try to run query against the firewall logs, below error returns: 'parse' operator: Failed to resolve scalar expression named 'msg_s' If the issue persists, please open a support ticket.
asked 2023-05-04T06:11:29.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 75%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK6%3C/text%3E%3C/svg%3E)
Kenneth 6318
0
Reputation points
commented 2024-04-16T09:33:47.6733333+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Firewall Service Tag AzureCloud
Hi We're in the implementing phase of Azure vWAN combined with Azure Firewall and Azure Firewall Policies. We've configured a network rule which allows the port 80 and 443 to the service tag "AzureCloud" which should include all IP ranges from…
asked 2024-04-12T09:18:32.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 26%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWP%3C/text%3E%3C/svg%3E)
Wieser Philipp
20
Reputation points
edited a comment 2024-04-12T12:55:33.6166667+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
0 answers
How to get all firewall rules across multiple subscriptions and multiple RG's with all the properties via Azures Resource Graph?
Hi, We are looking for some help with proper formulation of a query that would give us all firewall rules with all properties . We have multiple firewall both with classic rules and firewall policy ones as well spread across multiple subscriptions.
asked 2024-03-11T11:38:10.5133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 96%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Nishant Sharma
0
Reputation points
commented 2024-04-05T12:26:01.6533333+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
how to configure traffic pass through onpermis firewall to azure firewall
hi My Architecture design On-premise Sophos firewall configuration site to site VPN (Azure) established static route configure 10.60.0.0/16 windows server(172.16.16.0/24) AZURE - Hub and Spoke design HUB VNet -Deployed (10.50.0.0/16) Azure…
1 answer
How to check detail outbound traffic of AKS with Azure Firewall setup
Hi, We have a AKS and all outbound traffic from this AKS are forwarded to a Azure Firewall with a user-defined route table. May I know where can I find the detail log of the outbound traffic? The closest log I can find are the AZFWApplicationRule and…
asked 2024-03-15T10:51:19.0233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 20%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Kit Shing Kwong
0
Reputation points
edited an answer 2024-04-02T16:26:42.9333333+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
Routing To On-Prem from Azure Spoke VNET
Hello Need some help in understanding how routing is actually working. Proposed hub and spoke set up. The Hub will contain our Azure Firewall and a Express route vpn gateway which connects to our onprem datacentre. We plan to connect 3 spoke VNETS to the…
asked 2024-03-26T14:19:18.9033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 50%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJK%3C/text%3E%3C/svg%3E)
jitesh k
0
Reputation points
answered 2024-03-27T03:51:02.14+00:00
ChaitanyaNaykodi-MSFT
24,656
Reputation points Microsoft Employee
1 answer
Azure Firewall outbound traffic
Hello Everyone, How to check the total outbound internet traffic for the last 30 days in Azure Firewall. Please advice. I searched in the metrics, but it did not display anything related to outbound traffic. Although "data processed" is…
asked 2024-03-18T11:06:23.2066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 21%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
krutibasa majhi
0
Reputation points
commented 2024-03-20T12:33:40.32+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to associate an existent Public IP with Azure Firewall
Hey guys, Is it possible to use one or more existing/pre-defined IPs with the Azure Firewall? *The Firewall is in a secure hub environment There are documents/scripts to create new IPs and associate them with the Firewall, via portal as well, but none of…
asked 2024-03-12T12:14:47.4233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 65%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Rodrigo Rosa
41
Reputation points
accepted 2024-03-19T11:14:57.63+00:00
Rodrigo Rosa
41
Reputation points
1 answer
Azure firewall high data processed
Hello All, I need you help to identify the issue. I observed a pattern in the Azure firewall metric for high data processing from January 24th, 2024, and I want to identify from which source it is generating high traffic. Due to this, the cost has also…
asked 2024-02-21T13:44:19.86+00:00
krutibasa majhi
0
Reputation points
commented 2024-03-18T10:56:31.6033333+00:00
krutibasa majhi
0
Reputation points
0 answers
User not able to access the one of the website service and getting i/o error
We have an environment hub and spoke model with outbound internet controls via Azure Firewall . One of the Source machine generating traffic towards internet towards website .Website is accesable but one of the service is not working . Error showing my…
asked 2024-02-26T12:27:36.5133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 3%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
ADM_Padamati Vijay Reddy
0
Reputation points
commented 2024-03-15T12:46:25.5766667+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
For firewall settings on systems receiving communications from Azure, how to restrict IP source
I have a cloud based server application that is being accessed by Azure based cloud applications. I need to protect my application from misuse by Firewall and really only want to permit access at the Networking level for particular customers. For the…
asked 2024-03-07T11:38:41.4366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 41%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENA%3C/text%3E%3C/svg%3E)
Nichols, Alan
0
Reputation points
commented 2024-03-14T17:10:43.3033333+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
Using Azure Firewall to regulate traffic between subnets of a Virtual Network
We have a Virtual network (e.g. 10.x.0.0/19) with multiple subnets (10.x.1.0/24, 10.x.2.0/24, 10.x.3.0/24) and an Azure Firewall. We have custom Route Tables assigned to subnets to direct traffic to the Firewall interface. An Azure Firewall regulates N/S…
asked 2024-03-07T13:30:03.0366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 23%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Clive Crocker
66
Reputation points
answered 2024-03-14T13:50:50.0666667+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
Change Azure Firewall from Force Tunneling to use the Azure FW for Internet traffic
Hi, we have recently migrated most of our workload from on-prem to Azure and we have currently S2S VPN connections between 2 of our on-prem sites and Azure. For phase 1, we used FW in force Tunneling mode to force all Internet traffic to our on-prem FW…
asked 2024-03-14T10:29:28.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 21%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGA%3C/text%3E%3C/svg%3E)
Ghulam Abbas
191
Reputation points
answered 2024-03-14T12:22:35.4933333+00:00
GitaraniSharma-MSFT
49,391
Reputation points Microsoft Employee
1 answer
Application Gateway Configuration for Seatable.
Hello, I am not familiar with seatable and would require help with setting up application gateway to access seatable application in Azure. Environment: Huba and Spoke Network Topology. Application gateway and firewall are deployed as shared resources…
asked 2024-03-12T04:36:32.3233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 92%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Jessie
85
Reputation points
answered 2024-03-12T05:59:38.77+00:00
KapilAnanth-MSFT
41,071
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Delete Azure Firewall - Visual Studio Subscription
Hello, i need help with the following Problem: I ran out of monthly Credit in Azure with my Visual Studio Subscription. I have n Azure Firewall that i want to delete. If click on delete, i get the error: 'Azure Firewall firewall1 failed to dereference…
asked 2024-03-01T10:16:01.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 98%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Malzahn, Hendrik
20
Reputation points
accepted 2024-03-11T08:29:39.7+00:00
Malzahn, Hendrik
20
Reputation points