Implementing Azure Firewall
Azure Firewall is a perimeter network security solution in Azure. It inspects incoming and outgoing virtual network connections to protect against malicious traffic before they impact our workloads. The main difference between Azure Firewall and a third-party firewall appliance deployed as a VM in Azure (called a network virtual appliance – NVA) is that it is a managed service. This means that we do not have to worry about managing the underlying OS updates, application updates, high availability, and scalability for Azure Firewall as these are managed for us by Microsoft. We simply deploy the service, configure it, use it, and pay for what we use. From a security perspective, Azure Firewall offers the following capabilities:
- Define application rules to allow or deny connections to specified domain names. For example,
Allow access to github.com;Block access to gambling.com. This is solely URL filtering. No TLS termination or deep packet inspection...
