Azure Firewall
Definition
Azure Firewall is a cloud-based network security service provided by Microsoft Azure, designed to protect Azure Virtual Network resources. It offers stateful firewall capabilities, allowing you to centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks. Azure Firewall supports both inbound and outbound filtering rules, and it integrates with Azure Monitor for logging and analytics.
Secure Settings Example
{
"properties": {
"networkRuleCollections": [
{
"name": "Allow-HTTPS",
"priority": 100,
"action": {
"type": "Allow"
},
"rules": [
{
"name": "Allow-HTTPS-Rule",
"protocols": ["TCP"],
"sourceAddresses": ["*"],
"destinationAddresses": ["*"],
"destinationPorts": ["443"]
}
]
}
],
"applicationRuleCollections": [
{
"name": "Deny-All-Other-Apps",
"priority": 200,
"action": {
"type": "Deny"
},
"rules": [
{
"name": "Deny-All-Rule",
"sourceAddresses": ["*"],
"protocols": [
{
"protocolType": "Http",
"port": 80
},
{
"protocolType": "Https",
"port": 443
}
],
"targetFqdns": ["*"]
}
]
}
]
}
}
Insecure Settings Example
{
"properties": {
"networkRuleCollections": [
{
"name": "Allow-All-Traffic",
"priority": 100,
"action": {
"type": "Allow"
},
"rules": [
{
"name": "Allow-All-Rule",
"protocols": ["Any"],
"sourceAddresses": ["*"],
"destinationAddresses": ["*"],
"destinationPorts": ["*"]
}
]
}
]
}
}