Azure Firewall
-
Azure firewall is a managed, cloud-based security services that protects your Azure VNET Resources. It is a fully stateful firewall as a service with buit-in high availability & unrestricted cloud scalability
-
Azure firewall operates on Layer 4 & Layer 7 on TCP/OSI Layers.
-
You can centrally create, enforce & log application & network connectivity policies across subscription s& virtual Networks
-
Features of Azure firewall
- Built-in high availability
- Avalilability Zones
- Unrestricted cloud scalability
- Application FQDN filtering rules
- Network traffic filtering rules
- FQDN tags
- Service Tags
- Threat intelligence
- Azure Monitor logging
- Certifications
- Force tunneling
Creating an Azure firewall
- Create a vnet with two subnets
- Create a vm in one of the subnets
Create a default route
- Navigate to All Services => Networking => Route Tables
- Select Add & Give a name firewall-router
- Select Subscribtion & Resource group
- Use the same location as your vnet and click create.
- Now open your route-table & associate with workload subnet (subnet in which your vm is running)
- Now Create a route b/w subnet and firewall