Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,389 questions
1 answer
One of the answers was accepted by the question author.
On premise network routing to internet via azure s2s
I have a test device that works on us internet only. we are the organization working for US clients. So to make the device work for test purpose we need to route all traffic from device via azure to internet. How can we do that please help me to find me…
asked 2022-05-19T16:35:10.377+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 42%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Niraj Shakya
21
Reputation points
accepted 2022-05-22T03:58:21.61+00:00
Niraj Shakya
21
Reputation points
1 answer
One of the answers was accepted by the question author.
Attaching Azure Firewall Policy with Hub using Terraform
Attaching Azure Firewall Policy with Hub using Terraform We are using hub and spoke architecture for creating landing zone on azure. We are using Terraform for infra provisioning. We have created VWAN, Hub, Firewall & Firewall policy using…
asked 2022-05-20T07:15:27.833+00:00
Kaushalendra Kumar
106
Reputation points
accepted 2022-05-20T14:52:39.287+00:00
Kaushalendra Kumar
106
Reputation points
1 answer
One of the answers was accepted by the question author.
Application gateway + Azure Firewall (directly going via internet)
I was trying to zero trust setup and achieve the route from application gateway -> central Azure firewall -> (webapp)App Service. But i cannot see the traffic from applicationgw going via AzFw The current route which has been setup on application…
asked 2022-05-11T18:47:29.233+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 31%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVP%3C/text%3E%3C/svg%3E)
venkatesh pillai
21
Reputation points
accepted 2022-05-14T06:34:11.833+00:00
venkatesh pillai
21
Reputation points
1 answer
How do you integrate a branch network whose address space overlaps spokes
I have a VWAN/Secure Hub topology in Azure with the hub and all of its internal spokes living in the 172.16.0.0/16 -> 172.24.0.0/16 spaces. Internally, this all works just fine. Now I need to be able to integrate external data centers by…
asked 2022-05-11T20:44:15.903+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 69%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Steve Down
96
Reputation points
commented 2022-05-12T01:32:04.997+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
23,031
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Azure Firewall Policy during region failure
I have the below architecture in Azure - Two Virtual Network -- vnet1 (region: East US), vnet2 (region: West US) Two Firewall -- fw1(on vnet1, East US) , fw2(on vnet2, West US) One Firewall Policy in East US -- fwpolicy(attached to both…
asked 2021-10-06T11:47:54.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 0%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Sourav
21
Reputation points
answered 2022-05-09T16:20:26.887+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 14.000000000000002%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Brant Boyd
1
Reputation point
1 answer
Filter P2S traffic through Azure Firewall to spokes
Hello ! I'm trying to force all the P2S traffic through azureFirewall to be able to reach spokes vnets. I have the following topology : 1 hub vnet (10.1.0.0/16)with 2 subnets (GatewaySubnet (10.1.1.0/27)/ AzureFirewallSubnet(10.1.2.0/24)) with…
asked 2022-05-02T06:20:30.5+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 60%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Cloudy
186
Reputation points
commented 2022-05-04T13:44:29.4+00:00
GitaraniSharma-MSFT
47,591
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure - Hub And Spoke P2S-IPSEC different customers
Dear community ! I'm thinking about a network architecture for the diagram below ![195440-usecase.png][1] The situation is the following : - The aim is to force traffic to go through AzureFirewall when customers wants to reach their workloads (Each…
4 answers
Route traffic through multiple Azure FWs in different Vnet
Hello, i have a question about routing traffic through two Azure firewall in different Virtual network(Vnets) in different regrions. Also, both Firewalls and Vnets are in different regions. If there is a hub-Vnet with Az FW and a spoke-Vnet with Az FW.…
asked 2022-04-18T08:27:36.423+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 14.000000000000002%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EME%3C/text%3E%3C/svg%3E)
Mohamed Elashkr
21
Reputation points
answered 2022-04-19T02:10:30.05+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 96%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Somnath Kumar
76
Reputation points
1 answer
The virtual network must have a subnet named Azure virtual firewall subnet
Hi Team, Although I created a seperate subnet of Azure firewall under Vnet belongs to my VM . But while creating the Azure Firewall it showing the below errors as attached . Please guide me to know more on this . ![ ]2
asked 2022-04-14T13:34:14.487+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 8%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
SOUMYADIP CHATTERJEE
1
Reputation point
answered 2022-04-14T15:06:26.627+00:00
Alan Kinane
16,786
Reputation points MVP
1 answer
How to configure ASA VPN (P2S) and Azure Firewall to permit internet access without split-tunneling.
Trying to configure access for VPN users connecting into the Azure environment, while allowing them to connect to Internal sites without deploying split-tunneling on the Cisco ASA VPN device. Looking for advice, web docs, whatever would give me a…
asked 2022-04-12T19:50:01.447+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 78%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
David Beitler
31
Reputation points
answered 2022-04-13T16:11:41.807+00:00
David Beitler
31
Reputation points
1 answer
One of the answers was accepted by the question author.
Can you create your own custom IDPS Signatures/Rules
Is there a way to create custom IDPS signatures like with mainstream NGFW providers (Palo Alto, Fortinet, Checkpoint, Snort etc.) for the Azure Firewall Premium? Thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 75%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECH%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Pass Client IP to the webserver behind Azure Firewall
Is it possible to Pass Client IP to the webserver behind Azure Firewall, need to obtain the original client IP's which connect to my webserver behind the azure firwall
asked 2022-04-04T18:01:39.563+00:00
Padman Prasantha De Silva
21
Reputation points
accepted 2022-04-05T04:15:18.553+00:00
Padman Prasantha De Silva
21
Reputation points
1 answer
Azure Firewall
Need to get the source IP of the client who is connecting from outside to my webserver behind a Azure Firewall NAT rule
asked 2022-04-02T04:47:59.95+00:00
Padman Prasantha De Silva
21
Reputation points
answered 2022-04-04T10:58:15.553+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 32%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EY%3C/text%3E%3C/svg%3E)
yusuke
81
Reputation points Microsoft Employee
4 answers
One of the answers was accepted by the question author.
Point-to-Site VPN protected by Azure firewall from the outside
Hello, I am wondering how I could configure the hub to route traffic as follows: p2s tunnels over the internet -> azure FW - > vpnGateway - > AzureFW -> vnet subnets (and back to p2s clients the same way) tia
asked 2021-07-20T16:48:53.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 69%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Marek Kurowski
21
Reputation points
commented 2022-04-01T19:12:10.06+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 41%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Jeremy
136
Reputation points
1 answer
Azure Firewall Log Query - Src and Dst IP Only
Hi folks - newbie here so excuse me - don't worry i'll stop asking basic qtns here very soon [hopefully] Can I please ask someone to share script to run query for defined source / destination IP only only. So in other words, show me all flow with the…
asked 2022-03-15T15:39:29.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 17%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAN%3C/text%3E%3C/svg%3E)
Ajaz Nawaz
21
Reputation points
answered 2022-03-25T21:38:46.723+00:00
ChaitanyaNaykodi-MSFT
23,031
Reputation points Microsoft Employee
1 answer
Avoiding Preflight calls
I have frontend react app deployed in Az CDN and backend in Az App service. How can I avoid CORS issue i.e. avoiding preflight calls? Please suggest a solution.
asked 2022-01-21T13:26:56.4+00:00
Anantha Subramanian
46
Reputation points
commented 2022-03-22T07:16:22.017+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 28.000000000000004%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGK%3C/text%3E%3C/svg%3E)
Ganeshraj Kandasamy
1
Reputation point
2 answers
One of the answers was accepted by the question author.
How to set up a multi-spoke virtual network in Azure Firewall
Can you tell us how to configure multiple-spoke virtual networks in Azure Firewall when you adopt a hub-spoke network topology in Azure?
asked 2021-08-17T05:29:13.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 6%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EST%3C/text%3E%3C/svg%3E)
清水隆宏 / SHIMIZU,TAKAHIRO
106
Reputation points
commented 2022-03-16T13:10:15.993+00:00
GitaraniSharma-MSFT
47,591
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Cannot Delete Azure Firewall
Hi Folks, I am not able to delete azure firewall, error: Failed to delete the Azure Firewall 'AZFW01'. Error: Azure Firewall AZFW01 failed to dereference Firewall Policy…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 37%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ2%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Hub & Spoke with Azure Firewall - Integrating External Businesses
Hi, I need to find a solution to integrate external businesses into our Azure Hub & Spoke environment with an Azure Firewall. By external businesses I am meaning businesses that we own as a group but are not connected to our normal MPLS network. I…
asked 2021-12-31T12:19:59.117+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 78%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Son
306
Reputation points
commented 2022-03-15T14:39:36.57+00:00
EnterpriseArchitect
4,761
Reputation points
1 answer
Assigning external IP to subnets
I am looking into the functionality of Azure in comparison to our existing on prem firewall. Currently we have a batch of external IPs broken up and assigned to one of the vnets on our firewall. i.e. Subnet 1 uses External IP 1 to go out to the…
asked 2022-03-08T19:46:06.953+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 18%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ACC_Admin_720
1
Reputation point
answered 2022-03-09T01:34:57.29+00:00
suvasara-MSFT
10,006
Reputation points