Azure Firewall Basic SKU differences with Firewall Standard SKU

Wiliam Rocha 40 Reputation points Microsoft Employee
2023-02-09T13:49:37.4533333+00:00

Hello all,

I would like to ask what are the differences between the Azure Firewall Basic SKU and Azure Firewall Standard SKU. In this blog post it says that Threat intelligence-based filtering supports only "Alert", but not the actual blocking. Still, if I deploy a Firewall with Basic SKU using ARM/Bicep and specify threatIntelMode as Deny, it actually creates with Deny mode.
So what should I trust?

User's image

Thanks,

Wiliam

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
564 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
928 questions
Accepted answer
  1. Sam Cogan 10,157 Reputation points MVP
    2023-02-09T14:02:57.82+00:00

    There are a few things that differ in the basic SKU

    • Threat detection in alert only, even if you set this deny it will not work
    • Pricing is cheaper for the hourly cost, but more expensive for throughput, as it is designed to be used for light workloads only
    • Only support 250MB/s throughput
    • Does not support FQDN filtering for network rules

    You can see more details here

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest