Azure Classroom Series – 31/Mar/2021

Azure Firewall

  • Azure Firewall is a managed cliud based network security service that protects our Azure Virtual Network Resources
  • We can centrally create, enforce and log application and network connectivity policies across subscriptions and virtual networks
  • Azure Firewall uses a static public ip address for your virtual network resources allowing outside firewalls to identify the traffic orginationg from your virtual network
  • Azure firewall features
    • Built-in high availability
    • Application FQDN Filtering rules
    • Network traffic Filtering Rules
    • Threat intelligence
    • Azure Monitor logging
    • Multiple public ipaddresses
  • Azure firewall gives us total control over our n/w traffic.

Creating Azure Firewall

  • Create a virtual network with the folowing subnets and the vnet address space is
    • Subnet: Web
    • Subnet: App
    • Subnet: Db
    • Gateway Subnet:
  • Now Add a new subnet and the name of the subnet is AzureFirewallSubnet
    • address space Preview Preview Preview
  • Now lets create a Azure Firewall Preview Preview Preview Preview Preview
  • Azure firewall uses a set of rules to control outbound traffic, We can either block everything by default and allow only whitelisted traffic or We can allow everything and block only blacklisted traffic. Preview
  • When vms or resources in vnet wants to connect to the internet/other network locations the traffic should be forwarded to the Azure firewall Preview
  • So to do this we need to understanding routing in Azure. All these days we have never tried to use routing in Azure as we have used the default routes in Azure
  • So to understand firewall policies and whitelisting/blacklisting n/w traffic we need to understand routing.
  • In the next session lets understand routing in Azure

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

About learningthoughtsadmin