Azure Firewall High Latency
I have a firewall setup of standard SKU type what is the recommended latency probe recommended for standard SKU. If it reaches the maximum latency how we can resolve?
Azure WAN and P2S VPN Forced Tunneling
I have setup Azure WAN with a secured hub(Azure Firewall). WAN also has a P2S VPN which am successfully able to connect to. I understand forced tunneling was not an option before Azure VWAN, but now can i do forced tunneling for my P2S clients and give…
Inbound traffic to public IP address associated to Azure Firewall Premium
How to allow inbound traffic to public IP address associated to Azure Firewall Premium?
How to migrate Azure Firewall Policies/Configuration to a different Azure account?
What is the process for migrating or importing existing Azure Firewall Policies/Configuration to different Azure accounts? I have a "template.json" and "parameters.json" file from another Azure Firewall setup, and I want to import…
I can't see an option to change firewall rules under setting in firewall
I want to add firewall rule under settings in azureFirewall but there is no option to do so
Where does Azure Firewall send TCP RST packets during Virtual Machine Scale Set scale in (scale down)?
Currently we have connection losses in our network, these seem to coincide with Azure Firewall VM instance shutdowns. Therefore I better want to understand what happens. In the Load Balancer TCP Reset and Idle Timeout documentation I read that it’s…
How to fix the error EOF occurred in violation of protocol (_ssl.c:1129)
Hi, Azure Login’ is failing from internal jump server with below error. I’m getting this error only when we are forcing the traffic through Azure Firewall. Error: EOF occurred in violation of protocol (_ssl.c:1129)
Permission required for configuring Azure Firewall?
Hello experts, I want to know the least or minimal roles and permissions required for configuring Azure Firewall and Policies in the Azure production environment. Thanks! Nidhi.
How to define and manage large scale connectivity rules between applications in Cloud Landing zones
What are ways in Azure to define connection rules in Virtual Networks/Subnets/security Zones for different application to communicate with each other using specific attributes such as source, destination, service, protocol... on a large scale. E.g. Let's…
Filter traffic from a site-to-site vpn with virtual hub, vwan and Azure firewall.
I have implemented a virtual hub, vwan and azure firewall, I need the traffic coming through a vpn site to site to be filtered by azure firewall. I am not sure how to configure it, but I have checked in microsoft documentation and I see that I could…
Azure Firewall blocking traffic from Virtual Network Gateway
Hello All! We have a VPN (Site-to-site) connecting our customers On-Prem network with our Azure environment. In this Azure environment we have a VNet containing two VMs. This VNet has an Azure Firewall associated to it. In the Firewall rules, we have…
Azure Firewall Manager GUI peered vnet icon
This is from Azure Firewall Manager / Virtual Network GUI. What's the difference between green and blue icon?
path "/SUBSCRIPTIONS/5B0F54C4-6B83-44E7-A71F-E02E4C5CEFDC/RESOURCEGROUPS/HUB-NETWORK-EASTUS-RG/PROVIDERS/MICROSOFT.NETWORK/AZUREFIREWALLS/AZUREFIREWALL_SHD-HUB-EASTUS-VHUB"
We got security alert ,please suggest of the activity which kind of activity is it ? alert details is mentioned below path…
Alternative choice of Checkpoint firewall in Azure.
Hello experts! I am working on the Checkpoint firewall and managing Azure resources. But I wanted to know if we can use the functionalities of Checkpoint firewall in Azure Firewall as I wanted to keep only one portal to manage everything from Azure…
How to manage firewall public ips for secure virtual hub?
Hi all, I've created a virtual hub in my environment, and now I'm trying to make it a secure virtual hub by adding an Azure Firewall instance. For the firewall I want to use two public ips that I have created previously. From looking at the…
WAF exclusion rules alternatives
Hello, Can anyone help me with this. We enabled WAF rules for my Azure app services and two rules are blocking the below request (920230 - Multiple URL Encoding Detected, 931130 - Possible Remote File Inclusion (RFI) Attack: Off-Domain…
Managing ACR access via Azure Firewall Manager
Hi, I'm trying to create a solution where all Azure services (AKS, AKV, ASQL, ACR, etc.) can only be accessed if the client is connected using Azure VPN Gateway. I have already managed to connect AKS from a different VNET to only be accessed privately…
Backup up network settings of Azure for virtual routers/firewalls
Hi Guys, I have a few firewalls and routers set up in Azure. The firewalls and routers are locked down to a specific group (Security group) and also their configurations are backup daily. While Azure portal allows system, storage, virtual and security…
931100- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link exclusion rules
Hello, Can anyone help me with this. We enabled WAF rules for my Azure app services and facing one issue with the rule "931100- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link". Because of above rule i am getting the…
TLS Inspection not working.
TLS Inspection with auto-generate new certification feature in Azure Firewall Premium does not work. The document followed was as follows.…