@Jed Wilson , Azure Firewall denies all traffic by default, until rules are manually configured to allow traffic. So, you need to setup individual DNAT rules for each host in the firewall policy.
----------
Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.