setup single VNet with mutple subnets or multiple peered VNets with one subnet each ?
Need help design our first Azure VNet in our new Azure Subscription. Requirement: We need to setup 4 networks (either VNet or Subnet) - Apps, DB, Web, & Dev. All should be able to talk to each other. No Isolation required. …
Azure IP Group - nested groups
Is there a way to add an Azure IP Group to an existing IP Group? Like a nested group. Say groups such as DevIps with members 1.2.3.0/24 TestIps with members 1.2.4.0/24 ProdIps with members 1.2.5.0/24 can be a member of …
Subscription Disabled - Unable to delete Azure Firewall
Hi everyone, I have a free visual studio MSDN subscription, with $115/month credit. I deployed Azure Firewall 3 months ago and I now accrued costs over my budget (negative balance). So my subscription is now disabled. Due to my subscription…
secure vhub to vhub two region connection
I have vnet1 (0.0.0.0/0) pint to AFW1 (1.1.1.1) then connection to vhub1 and vnet2 (0.0.0.0/0) point to AFW2 2.2.2.2 then connection to vhub2.I can reach afw2 from vm1 but can't reach vm2 .Any advice or document that can help pls.
How to RDP Azure VM behind Azure Firewall
Hello, I have a Azure VM which is behind Azure Firewall - After adding a rule under "NAT rule collection" in FW to translate FW IP into Azure VM private IP and then tried RDP to Azure VM using Firewall IP - It worked. I wanted to check if I can…
Routing for user internet traffic that goes through the expressroute and consumes azure internet.
Hello, I would like to set up a route that will allow our on-premise company users to be able to access the internet from Azure and not from the On-premise. I would like to direct the outgoing flow to access the internet via the expressRoute,…
about routing table configuration
I have some questions about the default route table of Azure VPN gateway. I have a Virtual network(10.0.2.0/24),a ec2 host (10.0.2.4) ,and a Virtual appliance(10.0.0.4). I hope the client of VPN gateway to access the host 10.0.2.4 MUST go…
How to ristric azure app serive admin portal URL to access only from internal network
Hi, we have a website abc.com and accessable publically. How to ristric backend portal access (abc.com/wpadmin or ) URL to access only from internal network. Only the URLs with /admin/ in them need to be restricted to be accessible only from internal…
Cannot delete firewall manager, updating
I'm trying to delete a firewall policy that isn't attached to anything, but it just fails each and every time with the message: Failed to delete Firewall Policy 'euw-tst-lab-hub-01-azfp-01'. Error: Firewall Policy euw-tst-lab-hub-01-azfp-01 can not…
How to import Azure Public IP Range JSON to Azure Firewall
Hello, I downloaded the JSON from the following link: https://www.microsoft.com/en-us/download/details.aspx?id=56519 which includes all the Azure public ip address. How can I import the file to my Azure firewall configuration? Thanks.…
WAF Custom Rule not working
I am trying to block an end point from my WAF using a custom rule. My waf is in preventive mode and I tried creating the custom rule both manually through portal and also using powershell script. Seems it is not blocking the end point. Could you please…
Which SCCM server needs access to SQL Server
Hi, I have build and configure new SCCM site but I been ask to lock the port 1433 to only system which needs access to the database. SCCM/WSUS and SQL are install on same server. We do have DP and MP on different servers Do I only need…
Update of Azure Firewall Policies failes - faulted referenced firewalls
Hi all, I try to create a Firewall (vWAN Secured Hub) using an ARM Template (actually as part of a blueprint). The initial deployment works like a charm. But when I try to update the blueprint assignment and thus triggering a new deployment I get…
Related to Redirecting or Rerouting My url
So, I've a Url call it myurl with port 11 with azure Vm. I Want My Users to Enter the Url without Port. Like Hiding My Port or Whatever You from Front End But Calling url:11 from Backend!
Enable Azure firewall DNS proxy with custom DNS + APIM
Hi MS support, we need to check your recommendation on enabling Azure Firewall DNS proxy where custom DNS is used. We have HUB and Spoke model where APIM is used in spoke connecting to another public cloud provider via Azure Firewall(API calls). As…
Can we downgrade AZ firewall sku premimum to standard ?
Hi MS, I'm well aware this is not possible at this stage and it was already on one of your forums. I would like to confirm that this is still the case ? Any future plans to have this feature available handy ?
Permissions on Subscription vs Permissions on resource group.
I have requirement to provide resources to a Team where they want to work independently. My single requirement for me is that all traffic going outside to internet should be managed by me via firewall, they should not have firewall access and rest they…
Best practice and use case scenario of Azure Firewall ?
People, I'd like to know the best-case scenario for deploying and using Azure Firewall in my production Subscription is? From what I can see, the KeyVault and Storage Account already have their own Firewall feature built in, therefore it is only…
Internal Server Error - When deploying an Azure Firewall Policy with no changes
Since last week when trying to deploy an Azure Firewall Policy rules we get the following error: Internal Server Error: The response for resource had empty or invalid content This only happens if there are no changes between the template being…
Cannot read properties of null (reading 'properties')
hi im trying to add a rule collection in azure firewall manager' but i keep getting this error.... Cannot read properties of null (reading 'properties')