Not Monitored
Tag not monitored by Microsoft.
40,977 questions
Guidance Needed for Configuring Azure Firewall for Outbound Traffic Control
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 69%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVC%3C/text%3E%3C/svg%3E)
veerabose chandran
260
Reputation points
Hi Experts,
We currently have a setup with one HUB VNet and five Spoke VNets, all of which are peered. Additionally, there is a Site-to-Site (S2S) connection established between our on-premises network and Azure. The five Spoke VNets host multiple VMs and various PaaS services, and their outbound traffic is routed via the VNet Internet route.
Our requirement is to deploy an Azure Firewall in the HUB VNet and configure route tables to direct only outbound traffic through the firewall. Furthermore, we want to enforce application rules in the Azure Firewall to allow access to specific websites while denying all others.
Could you kindly provide guidance on the following:
- Configuring Azure Firewall with the appropriate network rules.
- Setting up application rules to allow access to specific websites and block all others.
Thank you for your support!
Veera.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 17%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Rohith Vinnakota 1,780 Reputation points Microsoft Vendor2025-01-15T04:43:05.05+00:00 Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
We see this is a duplicate thread ofGuidance Needed for Configuring Azure Firewall for Outbound Traffic Control with tracking id:
We shall mark this question as duplicate and work with you on the above thread.
Thanks.
Rohith
Sign in to comment
Sign in to answer