WAF custom rules for SAP
Hi Experts, Can you please suggest azure gateway WAF rules for internet facing SAP flori and Solman applications.
Azure Firewall Policy - Rule collection Group limit
According to the service limits docs https://learn.microsoft.com/en-us/azure/azure-resource-manager/management/azure-subscription-service-limits#azure-firewall-limits the current limit on number of rule collection groups in a Firewall Policy is 50. …
Azure Firewall Dnat
Hello, I'm working on configuring Azure firewall for my virtual machines. I created a Dnat rule that allows RDP to one of my VMs, and it works perfectly. However, I discovered that adding a second Dnat rule to allow RDP to a different VM didn't work…
Azure Firewall Policy during region failure
I have the below architecture in Azure - Two Virtual Network -- vnet1 (region: East US), vnet2 (region: West US) Two Firewall -- fw1(on vnet1, East US) , fw2(on vnet2, West US) One Firewall Policy in East US -- fwpolicy(attached to both…
Cannot Delete Azure Firewall
Hi Folks, I am not able to delete azure firewall, error: Failed to delete the Azure Firewall 'AZFW01'. Error: Azure Firewall AZFW01 failed to dereference Firewall Policy…
Azure Firewall Network Rule for O365 - Error "Invalid argument: 'Malformed IP address: 2603:1006:1400::'"
Hi Community Just wondering if I'm completely off-the-mark here and someone can provide insights from experience. While configuring Azure Firewall Network rule for Office 365 IP Address ranges as suggested here-->…
Cannot able to connect Azure VM after changing firewall settings to ufw allow https
I have Installed Nginx. I have updated UFW firewall settings to allow https, I haven't allow ssh. Now I can't able to get into my virtual machine. I want to remove the old firewall settings from Virtual Machine without doing ssh.
Azure Firewall Exceptions for O365 and Defender
Hi We have deployed Azure Firewall in a hub-spoke topology where the spoke is hosting Azure Virtual Desktop (AVD) session hosts. I’ve gone through this this article for guidance on how to allow some of the basic Azure infra services (DNS, Health…
How to force subnet to use a public IP address in a Azure Firewall
I have a Virtual WAN deployed and now added an Azure Firewall. I have a couple of AVD/Citrix environments and I would like to have all traffic go through the Firewall. I also would like to keep the curently used Public IP address in a load balancer for…
List all Azure policy rule collections with Rules in PowerShell
Could someone help in getting me the equivalent PowerShell command for the below Az command? az network firewall policy rule-collection-group list --policy-name <policyname> --resource-group <RG_Name> The requirement for me is to…
How to add Azure WAF firewall rules to Localhost applications
As per the Azure Firewall documentation, when a Firewall is added to application gateway and the firewall whether is in Protection / Detection mode the firewall rules will be applied and the requests which are failing to satisfy the conditions will…
Azure Firewall & Azure Web application Firewall Policy
Hi, Is it possible to restrict required URL's or websites by using Azure services like Azure application Gateway or Web Application Firewall Policies or Azure firewall service....or can anyone suggest the best service or solution for allow/deny…
Connecting VM to apps in a seperate resource group
I need some insight on how to connect a VM in a separate resource group to apps in another resource group that is fire-walled off with a public ip. Is it as simple as creating rules on the firewall to allow inbound traffic from the VM's public IP? or is…
Azure firewall
Hi, Please reply me of below questions 1- Azure firewall is a PaaS service and what about NSG? 2- I read we can deply azure firewall centerlized. what does it mean? Can you give me a simple example? Regards
How to redirect VNET traffic that is secured by NSG into the Azure Firewall in Hub VNET?
People, I've just deployed a new Azure Firewall in a Production Subscription in Hub VNET called HUB-FW-VNET. I've got multiple Azure Subscriptions with various different VNETs and NSGs applied. May I know what steps do I need to take to redirect all…
Azure firewall rules redeploy
Good night, I have a question about how to perform the following changes at azure firewall level. We have an azure firewall which have hundred number of rules and it is growing very quickly. So ,we have planned to perform changes redepleying it's…
What is this 13.86.101.172 IP Address referred in azure-quickstart-templates for creating Firewall
Azure Firewall Premium SKU We are looking at Github samples [Create Firewall with firewall Policy][1] for creating Azure Firewall using ARM templates. The sample creates a 'time-windows' outbound NetworkRule to 13.86.101.172:123. Can someone tell me…
Azure Firewall and NSG configuration?
Hi People, I've got 40+ VMs in Azure Resource group located in different regions. I wanted to allow only 10 VMs to access the internet and the rest is just Corporate Intranet only (via Express Route to my OnPremise network). Should I deploy one…
Planning and Procedures for deploying Azure Firewall best practice?
People, I need some help in planning and deploying Azure Firewall. What's the best practice and the steps to configure it properly for multi-region deployments to protect workload like: Azure VMs Azure API Web Application Thanks in…
Do Azure Firewall at VNet blocks any log analytics workspace data
I have a set of VMs spread across different VNets, these VMs logs data to Log Analytics workspace and these VNets are connected via Hub-Spoke topology. Looking to implement Azure Firewall at Hub to increase the security across my VNet resources. Now I…