Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
681 questions
0 answers
How can I get sorted Hit count in the Traffic Flows tab in Azure Firewall Policy Analytics?
Hi, we are planning a larger network change and to prepare for that we want to make sure we are aware of the most common traffic patterns within our network. Thus, we turned to Azure Firewall Policy Analytics as it could be a great tool to better…
asked 2024-11-08T14:43:27.15+00:00
Karl-Petter Elliot Åkesson
20
Reputation points
commented 2024-11-08T17:41:40.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
26,216
Reputation points Microsoft Employee
0 answers
Difficulty Identifying Edited Rules in Azure Firewall Logs via KQL
Hello, community! I'm having trouble identifying specific changes to Azure Firewall rules through KQL (Kusto Query Language). After modifying certain firewall rules, I can see that edits have occurred through the firewall’s logs tab (where it shows a…
asked 2024-11-07T14:16:55.0666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 60%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Hyago Santana Mariano
20
Reputation points
commented 2024-11-08T12:23:59.51+00:00
Hyago Santana Mariano
20
Reputation points
3 answers
Need to find Top talkers from Azure Firewall network Logs
I want a KQL query and configuration settings which can give me Azure firewall network rule logs with column having details for SentBytes and received bytes details for each packet.
asked 2024-11-05T10:20:11.85+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 91%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Shramik Ghadigaonkar
0
Reputation points
commented 2024-11-08T01:17:02.9533333+00:00
ChaitanyaNaykodi-MSFT
26,216
Reputation points Microsoft Employee
0 answers
How to effectively tune Azure WAF without exhausting too many resources
We have Azure WAF rules in prevention mode in both Azure Front Door and APIM gateway. We are facing this issue for a long term due to so many false positives blocking requests from our end users, frustrating us and users as there is no predictive…
asked 2024-11-07T15:32:30.6733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 92%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Jyotirmoy Pan
0
Reputation points
commented 2024-11-07T19:48:33.59+00:00
ChaitanyaNaykodi-MSFT
26,216
Reputation points Microsoft Employee
0 answers
Site to Site VPN Connection
I have configured site to site VPN as per the Microsoft documentation. We have created: Vnet Vnet Gateway Local network gateway Connection We have configured with all the client's requirement. We are seeing connection status: Unknown We have also created…
asked 2024-10-25T12:40:28.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 33%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
VATIKA SAXENA
0
Reputation points
commented 2024-11-07T09:27:48.9733333+00:00
VATIKA SAXENA
0
Reputation points
1 answer
One of the answers was accepted by the question author.
On premise network routing to internet via azure s2s
I have a test device that works on us internet only. we are the organization working for US clients. So to make the device work for test purpose we need to route all traffic from device via azure to internet. How can we do that please help me to find me…
asked 2022-05-19T16:35:10.377+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 42%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Niraj Shakya
21
Reputation points
commented 2024-11-06T20:47:27.5233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 76%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Steffen Schuler
0
Reputation points
1 answer
closed ports 443 and 80 on all my VM's
my firewall is open for all inbound ports in order to troubleshoot the issue but I am still having that my only two ports is closed 443 and 80 only but all other ports are open in all my VM's . I have a peering network between two VNET is this where came…
asked 2024-11-06T09:47:22.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 57.99999999999999%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Tom
0
Reputation points
answered 2024-11-06T16:28:44.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Ganesh Patapati
1,275
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Is there a need to configure any port on Firewall for Azure Arc inbound connectivity?
I want to know whether AzureArc extensions like AMA, WAC, ESU, HybridWorker etc need any inbound ports to be opened on Firewall? The outbound connectivity is public via the internet. Nothing configured for Inbound specifically. A lot of these extensions…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 19%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
3 answers
How to find azure firewall rules using KQL
Hi Team, We are currently having an azure firewall in place and also diagnostic settings are enabled to log the information in Log Analytics Workspace. However, when I run the below query I'm not getting any results: AzureActivity | where…
asked 2023-02-16T01:00:28.5766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 61%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mohit Kumar
0
Reputation points
commented 2024-11-05T09:37:19.7866667+00:00
Shramik Ghadigaonkar
0
Reputation points
1 answer
Unable to bypass network traffic through firewall, if private link is configured for storage account.
I have a firewall configured in subnet x in my vnet. I also have an aks cluster launched in the same vnet, within subnet y. I have configured a private endpoint for a storage account, and am trying to access the same from my aks subnet, which is…
asked 2024-11-04T04:49:13.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 93%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Paritosh Kabra
0
Reputation points
answered 2024-11-05T05:57:07.4166667+00:00
KapilAnanth-MSFT
47,046
Reputation points Microsoft Employee
1 answer
Trying to open ldap port on azure fw but it just plain wont open
Hi everyone, please excuse my lack of knowledge here as I am trying to learn as I go. I have a Synology NAS device at my office that I would like to connect with my Azure Ad so that I can pass authentication for sharing permissions to the NAS. I am…
asked 2024-10-31T07:56:02.9733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 24%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Adriaan Cilliers
1
Reputation point
answered 2024-11-04T11:02:42.03+00:00
KapilAnanth-MSFT
47,046
Reputation points Microsoft Employee
0 answers
How do I configure an inbound NAT rule in Azure Firewall to point at an Azure Container App?
The instructions to filter inbound traffic uses a Virtual Machine with a private IP address. If I set up a Container Apps Environment with a subnet and a Container App with VNet only ingress, the Container App replica doesn't have a private IP available.…
asked 2024-10-14T15:43:46.87+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 0%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECF%3C/text%3E%3C/svg%3E)
Christopher Febles
0
Reputation points
commented 2024-10-30T18:20:29.58+00:00
Christopher Febles
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Firewall DNS Proxy & DNS Private Resolver
I am trying to achieve a setup where I have the following main components. Hub vnet 10.0.0.0/23 This has a VPN connection to on-premises This has a Azure Firewall Shared services vnet 10.0.3.0/24 This has DNS Private Resolver With inbound and…
asked 2024-10-22T10:53:26.32+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 48%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJN%3C/text%3E%3C/svg%3E)
Joni Nieminen
20
Reputation points
accepted 2024-10-28T21:01:52.01+00:00
Joni Nieminen
20
Reputation points
8 answers
When to use Azure WAF or Azure Firewall ?
Hi Folks, Can anyone here please share some thoughts and comments of when to use Azure WAF or Azure Firewall? I have already existing Azure ExpressRoute so my Azure VMs can ping my OnPremise servers, and vice versa. My purpose here is to be able to…
asked 2020-11-15T13:17:27.597+00:00
EnterpriseArchitect
5,406
Reputation points
answered 2024-10-26T23:21:11+00:00
Ugacomp Technologies
0
Reputation points
1 answer
Azure Firewall Migration to vWAN Hub
I have a question regarding migrating/replacing Azure Firewall (in this case standard Firewall) in a hub-and-spoke network, and replacing with a Azure secured VWAN hub. I have looked at the following migration guide which includes secured WAN:…
asked 2024-10-23T11:38:05+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 94%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEV%3C/text%3E%3C/svg%3E)
Eddie Vincent
20
Reputation points
answered 2024-10-24T20:15:04.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 17%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Rohith Vinnakota
1,085
Reputation points Microsoft Vendor
1 answer
How to create a Routing table between my Azure firewall to Azure SD-WAN Vmx
Hello we have a Vnet name Vnet-SD-WAN and Below are subnets in Vnet 10.170.0.0/22 and Sd-wan Vmx subnet - 10.170.1.0/28 Azurefirewall subnet -10.170.3.0/26 Azure Application gateway : 10.170.3.64/26 Network flow in below way …
asked 2024-10-20T12:15:26.2433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 10%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBG%3C/text%3E%3C/svg%3E)
Bolenath Gundagani
0
Reputation points
commented 2024-10-24T16:02:16.0066667+00:00
Ganesh Patapati
1,275
Reputation points Microsoft Vendor
2 answers
One of the answers was accepted by the question author.
Azure firewall logging traffic in a hub-and-spoke network
Hi, A similar sort of setup and query to this thread here, however I have a more specific question: https://learn.microsoft.com/en-us/answers/questions/1322184/azure-firewall-traffic-logging-for-route-based-vpn We have Azure Firewall logging all traffic…
asked 2024-10-17T14:27:45.68+00:00
Eddie Vincent
20
Reputation points
commented 2024-10-22T09:11:33.69+00:00
Deepanshukatara-6769
10,300
Reputation points
1 answer
Azure Firewall Logical Unit and Throughput
Hello Experts, Would like to know throughput for single logical unit of Azure Firewall 'Standard' and single logical unit of Azure Firewall 'Premium' , if it is same or different. As per following Azure URL -…
asked 2024-05-29T18:11:31.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 25%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Raviraj Velankar
111
Reputation points
commented 2024-10-21T07:44:03.9133333+00:00
Toivo
1
Reputation point
2 answers
One of the answers was accepted by the question author.
Azure Firewall rule limits
Hello, In our environment it is expected to reach the rule limits (20,000 unique source/destinations in network rules) and i know if i exceeded the limits this might impact my performance. Now i need to know what my options will be if i need more rules…
asked 2024-10-10T11:57:30.5033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 71%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETM%3C/text%3E%3C/svg%3E)
Tarek Metwally
40
Reputation points
accepted 2024-10-18T12:38:39.55+00:00
Tarek Metwally
40
Reputation points
1 answer
How to Setup Azure OpenAI for Databricks running into error Error code: 403 - {'error': {'code': '403', 'message': 'Access denied due to Virtual Network/Firewall rules.'}}
After creating a new resource for Azure OpenAI service , We ran into this error not able to access OpenAI via api_key and endpoint (private) due to the error message indicates that access is denied due to Virtual Network/Firewall rules. How can we…
asked 2024-10-16T18:18:51.8966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 50%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETK%3C/text%3E%3C/svg%3E)
TANAPAT KLOMJIT
0
Reputation points
answered 2024-10-17T04:06:09.4066667+00:00
ChaitanyaNaykodi-MSFT
26,216
Reputation points Microsoft Employee