7. Azure Firewall

Most Azure networking components used for security are there to stop unwanted incoming traffic. Whether we use network security groups, application security groups, or a Web Application Firewall (WAF), they all have one single purpose—to stop unwanted traffic from reaching our services. Azure Firewall has similar functionality, including one extension that we can use to stop outbound traffic from leaving the virtual network.

We will cover the following recipes in this chapter:

  • Creating a new firewall
  • Creating a new firewall with PowerShell
  • Configuring a new allow rule
  • Configuring a new deny rule
  • Configuring a route table
  • Enabling diagnostic logs for Azure Firewall
  • Configuring Azure Firewall in forced tunneling mode

Get Azure Networking Cookbook - Second Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.