Configuring Security Rules In Azure Firewall

Azure Firewall is a Microsoft-managed network virtual appliance (NVA) that provides the best of breed threat protection for cloud workloads running in Azure. It is a cloud-native and intelligent network firewall security service that allows developers and network administrators to centrally create, enforce, and monitor network security policies in virtual networks. In this cloud development tutorial, we will demonstrate how to configure Azure to achieve high security and protection across a network.

Read: How to Create an Azure File Sync Service

How to Configure Azure Firewall

To begin learning how to configure Azure Firewall, we have to first create a virtual network. To do so, login to Azure Portal and search for the phrase Virtual Networks.

Create a Virtual Network in Azure Firewall

Click Create Virtual Network, select your Subscription and Resource Group. If you do not have one, go ahead and create a new Resource Group.

Create a Resource Group in Azure Firewall

Next, add the name of your virtual network and select Region.

Virtual Network Basic Details in Azure Firewall

Click Next and then add or update your IP addresses:

Add IP Address to a Virtual Network in Azure Firewall

Read: Azure Storage Account Replication Types

Then, in the Security tab, select the following options, as depicted in the next image:

Azure Virtual Network Security Options

Click on the Review + Create tab, then click Create.

Create a Virtual Network in Azure Firewall

Wait for your deployment to complete. Once finished, click on Go to Resource.

Deploy a Virtual Network in Azure Firewall

Choose + Subnet Link to a Subnet in the newly created virtual network.

Virtual Network Subnets in Azure Firewall

Add all the details required for the subnet and save it. You will now have two subnets under the newly created virtual network.

Azure Firewall Subnet Options

Azure Firewall Subnet Created

Read: Configuring Load Balancer in Azure

How to Create a New Firewall in Azure Firewall

Next, we will need to create a new firewall. Search for the phrase Firewall in the Azure Portal and click Create.

Create a New Firewall in Azure Firewall

Add the name of the firewall, then select the Region, Resource Group, and Availability Zone.

Add Azure Firewall Details

After this, we will want to select Firewall Tier Standard and then Firewall Management: Use a Firewall Policy to Manage This Firewall or create a new firewall policy, as depicted below:

Azure Firewall Policies

Select the previously created virtual network and update the IP Address space.

Azure Firewall Address Space

Next, create a Public IP or select an existing one if unused.

Create an Azure Firewall Public IP Address

After adding all of the basic firewall details, the screen will look like the image below:

Azure Firewall Details and Options

Finally, click Review + Create. Review all of the provided details to make sure they are accurate and create the firewall.

Azure Firewall tutorial

Now we have successfully deployed the Azure Firewall within our firewall. Take note of the Firewall Private IP, Firewall SKU, and the Firewall Subnet.

Read more Microsoft Azure tutorials and cloud development guides.

More by Author

Must Read