@Tanul Thanks for reaching out. Azure has an integrated high-level security system to protect the customers from different network attack and malicious activity.
The IP spoofing protection also included in the whole system by applying the ACL to allow only Microsoft trusted IP being routed within Azure backbone network.
You can read more about it here : https://learn.microsoft.com/en-us/azure/security/fundamentals/production-network#connection-to-production-network-and-associated-firewalls
You can also have Azure DDos protection plan which you can read here : https://learn.microsoft.com/en-us/azure/virtual-network/ddos-protection-overview
-----------------------------------------------------------------------------------------------------------------
If the suggested response helped you resolve your issue, please do not forget to accept the response as Answer and "Up-Vote" for the answer that helped you for benefit of the community.