Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,394 questions
1 answer
One of the answers was accepted by the question author.
Alternative to closing ports used by Azure Virtual Network Gateway
It is to my understanding that Azure Virtual Network Gateway requires some ports to be open for Azure infrastructure communucation and that there was no way to close said ports on the Network Gateway. My question is if there is an alternative or…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJC%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
How to redirect traffic from public ip of VM to firewall then to private IP of VM?
Hello, I have a problem with unusual infrastructure in Azure. I deployed firewall (pfsense) on default VNET 10.0.0.0/24, assign private IP: 10.0.0.4 for pfsense and I added route table: default route: 0.0.0.0/0 next hop is 10.0.0.4 (priv IP of pfsense)…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 44%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Azure VPN Gateway and Azure Firewall - S2S communication filtering
Hi Everyone! Please, I need your advice. I have Virtual network gateway which connects three on-prem sites (3 x Local network gateways). This part works perfect. There are only route and policy based routing (no dyn). All endpoints can ping each other…
asked 2024-02-04T19:53:09.9833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 7.000000000000001%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Christophe_M
40
Reputation points
accepted 2024-02-09T12:06:40.8+00:00
Christophe_M
40
Reputation points
1 answer
One of the answers was accepted by the question author.
Inbound traffic to public IP address associated to Azure Firewall Premium
How to allow inbound traffic to public IP address associated to Azure Firewall Premium?
asked 2024-01-22T06:19:42.4133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 85%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
John Emil Billones
20
Reputation points
accepted 2024-02-08T06:08:35.8566667+00:00
John Emil Billones
20
Reputation points
2 answers
One of the answers was accepted by the question author.
How to configure Application Gateway before Azure Firewall to App Services
Dear Microsoft community, I have an application gateway setup with WAF with app services as the backend pool targets. I have also setup access restrictions in the app service networking to only allow traffic through application gateway. Till here…
asked 2023-04-13T09:46:01.1133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 57.99999999999999%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMG%3C/text%3E%3C/svg%3E)
Martin Garrix
30
Reputation points
edited the question 2024-02-07T01:47:21.96+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
23,106
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Allow all outbound traffic through Azure Firewall
I followed the guide for implementing a new fresh Azure Firewall environment. I have set up a route table with traffic 0.0.0.0/0 to my Azure Firewall, but yet I want to route all internet traffic through this firewall to outside without any exceptions? …
asked 2021-08-19T11:06:43.21+00:00
André Krijnen
101
Reputation points
edited the question 2024-02-07T01:29:53.04+00:00
ChaitanyaNaykodi-MSFT
23,106
Reputation points Microsoft Employee
1 answer
Inbound port based routing
Hi, I have an issue where I require end users accessing the same public DNS name using different ports to be redirected to different public endpoints. For example - users accessing domain.com over port 80 get directed to the public IP of an…
asked 2024-02-01T14:19:57.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 62%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
John McCulloch
0
Reputation points
commented 2024-02-06T23:14:21.9166667+00:00
ChaitanyaNaykodi-MSFT
23,106
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Implementing Azure Firewall and Application Gateway in parallel
We have an existing Azure Application Gateway(AGW subnet) with WAF policies defined in our main VNET where host(host subnet) and proxy(proxy subnet) machines also reside. We have another VNET for SFTP servers(sftp subnet). Now we are implementing Azure…
asked 2024-02-01T13:17:57.8833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 83%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Reshma Nair
120
Reputation points
accepted 2024-02-05T09:49:43.3366667+00:00
Reshma Nair
120
Reputation points
1 answer
How to migrate Azure Firewall Policies/Configuration to a different Azure account?
What is the process for migrating or importing existing Azure Firewall Policies/Configuration to different Azure accounts? I have a "template.json" and "parameters.json" file from another Azure Firewall setup, and I want to import…
asked 2024-01-29T10:24:03.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jaikishan A Sah (jaisah)
0
Reputation points
commented 2024-02-02T09:19:13.4933333+00:00
KapilAnanth-MSFT
35,591
Reputation points Microsoft Employee
0 answers
Unable to connect to SFTP server in Azure from any machines in Azure since Azure Firewall configured
Hi, We have recently configured the Azure Firewall, and since then, connection to the SFTP virtual server in Azure has been failing for devices within Azure. It was working fine before we configured the Azure Firewall. However, connecting to the SFTP…
asked 2024-01-10T11:53:03.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 32%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPS%3C/text%3E%3C/svg%3E)
Pegah Sohrabi
0
Reputation points
commented 2024-02-01T12:45:41.44+00:00
GitaraniSharma-MSFT
47,696
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure governance and security compliance certificate query
Hi Team, For one of the customer, we have to provide governance and security compliance certificate based on Malaysia country to host Azure services. can you please provide any url where I can find them. I found below url where cannot see for security.…
asked 2024-01-29T07:04:07.6933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 81%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sanjay Singh
20
Reputation points
accepted 2024-01-30T23:19:56.6566667+00:00
Sanjay Singh
20
Reputation points
2 answers
How do i make API call's form microsoft azure databricks using a static IP address?
How do i make API call's form microsoft azure databricks using a static IP address? i am doing a get request from databricks - towards external source , To be more secure and safe - we want to whitelist only this IP (static IP from databricks ) on the…
asked 2024-01-11T15:01:20.8266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 5%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
Rahul Kishore
0
Reputation points
commented 2024-01-30T21:04:42.9+00:00
ChaitanyaNaykodi-MSFT
23,106
Reputation points Microsoft Employee
1 answer
I can't see an option to change firewall rules under setting in firewall
I want to add firewall rule under settings in azureFirewall but there is no option to do so
asked 2024-01-21T16:42:19.7366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 62%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Rishab Arya
0
Reputation points
commented 2024-01-30T14:24:33+00:00
GitaraniSharma-MSFT
47,696
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Setting up azure firewall premium policies
I am trying to implement Azure firewall premium for our existing infrastructure using terraform to enable the IDPS feature. But the main issue I am facing is the azure firewall policies(Dnat rules) which I created are not working or not getting attached…
asked 2024-01-23T16:17:49.2633333+00:00
Reshma Nair
120
Reputation points
accepted 2024-01-30T08:08:01.76+00:00
Reshma Nair
120
Reputation points
1 answer
Azure routing through a firewall to get to a DB backend Database over a VPN
I have two Azure VNETs, One is a Management VNET containing a public facing Application Gateway with an Azure Premium Firewall behind that. The other is a DEV VNET with a subnet containing a private endpoint to an SQL database. I use a VPN Gateway to…
asked 2024-01-29T15:25:57.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 23%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Julian
0
Reputation points
answered 2024-01-30T04:58:38.8433333+00:00
KapilAnanth-MSFT
35,591
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Where does Azure Firewall send TCP RST packets during Virtual Machine Scale Set scale in (scale down)?
Currently we have connection losses in our network, these seem to coincide with Azure Firewall VM instance shutdowns. Therefore I better want to understand what happens. In the Load Balancer TCP Reset and Idle Timeout documentation I read that it’s…
asked 2024-01-17T12:39:56.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 74%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGJ%3C/text%3E%3C/svg%3E)
Gun, JP van der (Joost) - Beheer
20
Reputation points
accepted 2024-01-26T14:49:10.6066667+00:00
Gun, JP van der (Joost) - Beheer
20
Reputation points
1 answer
VPN Gateway Routing Issue
Hi All, I will explain the existing setup and the challenges we are facing now.. --> Here in this Azure Cloud infra, all remote users, Vendors, Branches are terminated/connected through Azure VPN Gateway.--> Among that, One of the S2S connections…
asked 2024-01-12T14:54:47.0533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 7.000000000000001%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECB%3C/text%3E%3C/svg%3E)
Charlie B
0
Reputation points
edited an answer 2024-01-25T14:24:08.3366667+00:00
GitaraniSharma-MSFT
47,696
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Firewall as NVA
Hi all, Hope you are doing well! Do I need to deploy a Virtual Network Gateway for spoke hub connectivity even if I deploy an Azure Firewall. If yes, how the routing will happen? Thanks
asked 2024-01-24T11:43:36.5366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Apurva Pathak
310
Reputation points
commented 2024-01-24T14:11:27.4933333+00:00
GitaraniSharma-MSFT
47,696
Reputation points Microsoft Employee
0 answers
DNS Resolution Issues across Hubs
I have an existing VWAN and single VHUb. The Existing setup. All that is shown here in Subscription A works great. The sub A hub does not have a Firewall at this time. The VNets that are peered with the existing Hub, all have their Vnet DNS set to…
Azure Virtual WAN
Azure Virtual WAN
An Azure virtual networking service that provides optimized and automated branch-to-branch connectivity.
188 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
578 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
975 questions
asked 2024-01-16T16:56:27.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 11%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGB%3C/text%3E%3C/svg%3E)
Greg Bonk
21
Reputation points
commented 2024-01-24T06:48:00.9366667+00:00
KapilAnanth-MSFT
35,591
Reputation points Microsoft Employee
0 answers
AzureFW Deny rule is not output during connection troubleshooting
After verifying the connectivity troubleshooting below, We were able to confirm that no errors were output due to Deny in the AzureFW application rules. Access to https://www.example.com from VM2 is recognized as denied by AzureFW. ・Network …
asked 2024-01-24T01:54:10.4233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 11%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETY%3C/text%3E%3C/svg%3E)
Tsukuda Yusaku
0
Reputation points
commented 2024-01-24T04:38:01.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 0%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Silvia Wibowo
3,086
Reputation points Microsoft Employee