Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,543 questions
1 answer
How to connect AWS to Azure using P2S?
Hi, I want to know, if have Domain Controller in AWS (treat it as on-prem network), have Palo alto firewall that does VPN connection and if we want to connect azure network to aws network how will do? Can we please help me with an architecture diagram…
asked 2024-02-22T18:20:50.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 33%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Khushboo Kumari
0
Reputation points
edited an answer 2024-02-23T09:30:43.25+00:00
Jackson Martins
10,556
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
Azure Firewall High Latency
I have a firewall setup of standard SKU type what is the recommended latency probe recommended for standard SKU. If it reaches the maximum latency how we can resolve?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 44%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
7 answers
One of the answers was accepted by the question author.
Azure WAN and P2S VPN Forced Tunneling
I have setup Azure WAN with a secured hub(Azure Firewall). WAN also has a P2S VPN which am successfully able to connect to. I understand forced tunneling was not an option before Azure VWAN, but now can i do forced tunneling for my P2S clients and give…
asked 2021-10-14T02:57:10.967+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 68%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Ajeet Singh
71
Reputation points
commented 2024-02-15T22:16:57.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 70%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENG%3C/text%3E%3C/svg%3E)
Navyanth Gowda
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Inbound traffic to public IP address associated to Azure Firewall Premium
How to allow inbound traffic to public IP address associated to Azure Firewall Premium?
asked 2024-01-22T06:19:42.4133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 85%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
John Emil Billones
20
Reputation points
accepted 2024-02-08T06:08:35.8566667+00:00
John Emil Billones
20
Reputation points
1 answer
How to migrate Azure Firewall Policies/Configuration to a different Azure account?
What is the process for migrating or importing existing Azure Firewall Policies/Configuration to different Azure accounts? I have a "template.json" and "parameters.json" file from another Azure Firewall setup, and I want to import…
asked 2024-01-29T10:24:03.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jaikishan A Sah (jaisah)
0
Reputation points
commented 2024-02-02T09:19:13.4933333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
I can't see an option to change firewall rules under setting in firewall
I want to add firewall rule under settings in azureFirewall but there is no option to do so
asked 2024-01-21T16:42:19.7366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 62%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Rishab Arya
0
Reputation points
commented 2024-01-30T14:24:33+00:00
GitaraniSharma-MSFT
49,616
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Where does Azure Firewall send TCP RST packets during Virtual Machine Scale Set scale in (scale down)?
Currently we have connection losses in our network, these seem to coincide with Azure Firewall VM instance shutdowns. Therefore I better want to understand what happens. In the Load Balancer TCP Reset and Idle Timeout documentation I read that it’s…
asked 2024-01-17T12:39:56.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 74%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGJ%3C/text%3E%3C/svg%3E)
Gun, JP van der (Joost) - Beheer
20
Reputation points
accepted 2024-01-26T14:49:10.6066667+00:00
Gun, JP van der (Joost) - Beheer
20
Reputation points
1 answer
How to fix the error EOF occurred in violation of protocol (_ssl.c:1129)
Hi, Azure Login’ is failing from internal jump server with below error. I’m getting this error only when we are forcing the traffic through Azure Firewall. Error: EOF occurred in violation of protocol (_ssl.c:1129)
asked 2023-11-26T08:21:41.9733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 22%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Narendra Sharma, Rahul
0
Reputation points
commented 2023-12-01T14:12:46.0766667+00:00
GitaraniSharma-MSFT
49,616
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Permission required for configuring Azure Firewall?
Hello experts, I want to know the least or minimal roles and permissions required for configuring Azure Firewall and Policies in the Azure production environment. Thanks! Nidhi.
asked 2023-11-06T14:14:59.4466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 43%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Nidhi Priya
451
Reputation points
accepted 2023-11-07T11:18:14.2466667+00:00
Nidhi Priya
451
Reputation points
1 answer
How to define and manage large scale connectivity rules between applications in Cloud Landing zones
What are ways in Azure to define connection rules in Virtual Networks/Subnets/security Zones for different application to communicate with each other using specific attributes such as source, destination, service, protocol... on a large scale. E.g. Let's…
asked 2023-10-20T15:55:05.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 6%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENJ%3C/text%3E%3C/svg%3E)
Nilesh Joshi
0
Reputation points
commented 2023-11-02T16:13:23.7+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
26,201
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Filter traffic from a site-to-site vpn with virtual hub, vwan and Azure firewall.
I have implemented a virtual hub, vwan and azure firewall, I need the traffic coming through a vpn site to site to be filtered by azure firewall. I am not sure how to configure it, but I have checked in microsoft documentation and I see that I could…
asked 2023-10-19T20:02:28.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 57.00000000000001%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEO%3C/text%3E%3C/svg%3E)
Edwin Omar Fonseca Padilla
65
Reputation points
commented 2023-10-25T04:48:42.2533333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
2 answers
Azure Firewall blocking traffic from Virtual Network Gateway
Hello All! We have a VPN (Site-to-site) connecting our customers On-Prem network with our Azure environment. In this Azure environment we have a VNet containing two VMs. This VNet has an Azure Firewall associated to it. In the Firewall rules, we have…
asked 2023-08-03T15:29:01.8733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 82%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIF%3C/text%3E%3C/svg%3E)
Ilian Felinto
0
Reputation points
answered 2023-09-02T05:01:50.5433333+00:00
msrini-MSFT
9,281
Reputation points Microsoft Employee
0 answers
Azure Firewall Manager GUI peered vnet icon
This is from Azure Firewall Manager / Virtual Network GUI. What's the difference between green and blue icon?
asked 2023-08-17T20:22:13.81+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 55.00000000000001%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYS%3C/text%3E%3C/svg%3E)
Yang, Steven
151
Reputation points
commented 2023-09-01T01:34:30.75+00:00
ChaitanyaNaykodi-MSFT
26,201
Reputation points Microsoft Employee
1 answer
path "/SUBSCRIPTIONS/5B0F54C4-6B83-44E7-A71F-E02E4C5CEFDC/RESOURCEGROUPS/HUB-NETWORK-EASTUS-RG/PROVIDERS/MICROSOFT.NETWORK/AZUREFIREWALLS/AZUREFIREWALL_SHD-HUB-EASTUS-VHUB"
We got security alert ,please suggest of the activity which kind of activity is it ? alert details is mentioned below path…
asked 2023-08-24T14:41:17.0866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 8%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Suman Majhi
0
Reputation points
answered 2023-08-29T13:42:43.9933333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Alternative choice of Checkpoint firewall in Azure.
Hello experts! I am working on the Checkpoint firewall and managing Azure resources. But I wanted to know if we can use the functionalities of Checkpoint firewall in Azure Firewall as I wanted to keep only one portal to manage everything from Azure…
asked 2023-08-25T06:05:21.1033333+00:00
Nidhi Priya
451
Reputation points
accepted 2023-08-25T08:48:09.4433333+00:00
Nidhi Priya
451
Reputation points
1 answer
One of the answers was accepted by the question author.
How to manage firewall public ips for secure virtual hub?
Hi all, I've created a virtual hub in my environment, and now I'm trying to make it a secure virtual hub by adding an Azure Firewall instance. For the firewall I want to use two public ips that I have created previously. From looking at the…
asked 2022-09-06T08:52:14.513+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 24%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matthijs de Beer
61
Reputation points
commented 2023-07-17T17:27:41.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 91%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akshay Karoo
46
Reputation points
1 answer
WAF exclusion rules alternatives
Hello, Can anyone help me with this. We enabled WAF rules for my Azure app services and two rules are blocking the below request (920230 - Multiple URL Encoding Detected, 931130 - Possible Remote File Inclusion (RFI) Attack: Off-Domain…
asked 2023-05-01T07:57:19.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 57.00000000000001%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Aditya Parcha
0
Reputation points
commented 2023-07-06T03:23:37.0766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 92%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Matthew Auna
0
Reputation points
1 answer
Managing ACR access via Azure Firewall Manager
Hi, I'm trying to create a solution where all Azure services (AKS, AKV, ASQL, ACR, etc.) can only be accessed if the client is connected using Azure VPN Gateway. I have already managed to connect AKS from a different VNET to only be accessed privately…
asked 2023-05-03T16:13:58.7866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 42%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
Ian
0
Reputation points
commented 2023-05-16T17:23:15.3166667+00:00
deherman-MSFT
37,331
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Backup up network settings of Azure for virtual routers/firewalls
Hi Guys, I have a few firewalls and routers set up in Azure. The firewalls and routers are locked down to a specific group (Security group) and also their configurations are backup daily. While Azure portal allows system, storage, virtual and security…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 69%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
1 answer
931100- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link exclusion rules
Hello, Can anyone help me with this. We enabled WAF rules for my Azure app services and facing one issue with the rule "931100- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link". Because of above rule i am getting the…
asked 2023-04-28T11:39:58.9533333+00:00
Aditya Parcha
0
Reputation points
commented 2023-05-04T10:36:32.8633333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee