Azure Firewall

𝗔𝘇𝘂𝗿𝗲 𝗙𝗶𝗿𝗲𝘄𝗮𝗹𝗹
👉 It can act as a threat intelligence service
👉 Rules / Policies defined manually
👉 Cloud-managed service
👉 Decision — Allow / Deny
👉 Inbound / Ingress / Incoming — Allow / Deny
👉 Outbound / Eggress / Outgoing — Allow / Deny

𝗧𝗵𝗿𝗲𝗲 𝗸𝗶𝗻𝗱𝘀 𝗼𝗳 𝗿𝘂𝗹𝗲𝘀
1️⃣ Application rules — Outbound traffic & FQDN

❇ Inbound traffic — This traffic can come from the internet or other networks.
❇ Outbound traffic — From your network users to access websites and other resources.

2️⃣ Network rules — Inbound / Outbound traffic — Source / Destination will be desired

3️⃣ NAT / DNAT rules — Applicable Inbound traffic & VM Public IP

❇ DNAT — Destination Network Address Translation

𝗙𝗶𝗿𝗲𝘄𝗮𝗹𝗹 𝗥𝘂𝗹𝗲 𝗣𝗿𝗲𝗰𝗲𝗱𝗲𝗻𝗰𝗲 (𝗣𝗿𝗶𝗼𝗿𝗶𝘁𝗶𝗲𝘀)

❇ Inbound traffic — NAT rules will be given priority.
❇ Outbound traffic — Network rules will be given priority then applicable rules.
❇ Inbound rules — NAT / Network rules
❇ Outbound rules — Network rules / Application rules