Azure Firewall

Azure – You can now enable explicit proxy on your Azure Firewall (preview)

By default, Azure Firewall operates in a transparent proxy mode, where traffic is routed through the firewall using a user-defined route (UDR) configuration. Well, you can now enable explicit proxy mode for outbound traffic. With this mode enabled, you have the option to configure a proxy setting (either manually or using PAC file) on the […]

Azure – You can now enable explicit proxy on your Azure Firewall (preview) Read More »

Azure – You can now enable auto-learn SNAT for Azure Firewall (preview)

Azure Firewall can now learn address ranges and automatically configure them to be excluded from Source Network Address Translation (SNAT) for outbound connections (see https://learn.microsoft.com/en-us/azure/load-balancer/load-balancer-outbound-connections/). This helps reducing time and complexity when manually defining SNAT ranges. When auto-learn SNAT functionality, the auto-learn will configure the firewall every 30 minutes for both registered and private ranges.

Azure – You can now enable auto-learn SNAT for Azure Firewall (preview) Read More »

Azure – New FQDN tags for use with Azure Firewall for Office 365 services

If you use Azure Firewall to protect your resources running on Azure, you will be glad that you can now use new FQDN tags to easily manage access to Office 365 services. To do so, just edit or create your firewall rules, select the Destination as Service Tags and search for Office 365   This

Azure – New FQDN tags for use with Azure Firewall for Office 365 services Read More »

Azure – You can now use FQDN in network rule (preview)

Azure Firewall, the Firewall as a Service (FWaaS) from Azure, has been updated to allow you use Fully Qualified Domain Name (FQDN) when setting up network rules. To start using it, logon to your Azure portal (https://portal.azure.com) and search for Firewall There edit your existing firewall (or create a new one) and access the Rule

Azure – You can now use FQDN in network rule (preview) Read More »

Azure – You can now configure your own DNS on Azure Firewall and use DNS proxy (preview)

As you know, Azure Firewall is a cloud as a service (FWaaS) from Azure helping you to centrally managed traffic from Azure or to Azure. As you also know, firewalls (and not specifically just Azure Firewall) rely on correct name resolution to be able to work properly. Well, until now, Azure Firewall was hardcoded to

Azure – You can now configure your own DNS on Azure Firewall and use DNS proxy (preview) Read More »

Azure – You can now define exclusion lists in your WAF with Azure Front Door

You may already know that Azure offers a Web Application Firewall capability. Until now, you were not able to define request attributes exclusions list to be omitted from the WAF evaluation process. Well, good news, this is now possible. The attribute supported for the exclusion: request header, cookie, query string, post args To define your

Azure – You can now define exclusion lists in your WAF with Azure Front Door Read More »

Azure – Azure Firewall Manager can now integrate with virtual networks

As introduced some time ago, Azure Firewall Manager (AFM) is the central configuration and management point for Azure Firewall. Well, AFM has been updated and is now able to integrate with your virtual network. The integration consists on ‘converting’ your Azure Virtual Network to a hub virtual network. This is handy if your network architecture

Azure – Azure Firewall Manager can now integrate with virtual networks Read More »

Azure – You can now use a central configuration and management point for Azure Firewall

You may already know Azure Firewall, the managed, cloud-based network security solution protecting your Azure virtual network resources. Well, good news, you can now have a central configuration and management point for Azure Firewall, called Azure Firewall Manager, to help you manage your cloud-based security perimeters. Azure Firewall Manager works with Azure Virtual WAN Hub

Azure – You can now use a central configuration and management point for Azure Firewall Read More »

Azure – You can now assign multiple public IP addresses to your Azure Firewall

You can now associate up to 100 public IP with your Azure Firewall. This allows you to implement more NAT scenario – Source NAT (SNAT) and/or Destination NAT (DNAT). A DNAT scenario will be translating the same communication port (let say TCP 443 for example) while targeting different internal host. A SNAT scenario will allows

Azure – You can now assign multiple public IP addresses to your Azure Firewall Read More »

Azure – A new security feature available in preview in Azure: Azure Firewall

Microsoft has introduced a new security feature in Azure, in preview, called Azure Firewall. Azure Firewall is going to help you protect your Azure vNET. Like with other on-premises firewall solutions, Azure Firewall supports: FQDN filtering Traffic filtering rules SNAT support Integration with Azure Monitor logging (diagram courtesy Microsoft)   As this is a preview,

Azure – A new security feature available in preview in Azure: Azure Firewall Read More »