AZURE FIREWALL

A SERVICE PROVIDED UNDER THE FIELD OF NETWORKING

SERVICES
NATIVE FIREWALLING CAPABILITIES WITH BUILT-IN HIGH
AVAILABILITY, UNRESTRICTED CLOUD SCALABILITY & ZERO
MAINTENANCE
 WHAT IS AZURE FIREWALL? (IN DETAIL)

• cloud-native and intelligent network firewall security service that provides the best
of threat protection for cloud workloads running in Azure.

• It provides both east-west** and north-south* traffic inspection.

*North-South traffic inspection - North-south refers to the traffic that flows in and out of a
datacenter. For example, traffic from an application to a backend service.
**East-West traffic inspection - East-west traffic refers to traffic between or within data centers.
For this type of traffic, several resources of the network infrastructure communicate with each
other.

• Azure Firewall is offered in two SKUs: Standard and Premium.

 AZURE FIREWALL STANDARD

• Azure Firewall Standard provides L3-L7* filtering and threat intelligence

feeds directly from Microsoft Cyber Security. Threat intelligence-based
filtering can alert and deny traffic from/to known malicious IP addresses
and domains which are updated in real time to protect against new and
emerging attacks.

• High availability is built in, so no extra load balancers are required and
there's nothing you need to configure.

*(L3-L7 filtering basically means layers of the OSI model upon which the firewall
tends to work, i.e., L3 is Network Layer and L7 is Application Layer)
EXAMPLE SHOWING THE L3-L7 FILTERING
 AZURE FIREWALL PREMIUM

• Azure Firewall Premium provides advanced threat protection that meets the
needs of highly sensitive and regulated environments, such as the payment
and healthcare industries.

• Azure Firewall Premium provides advanced capabilities include signature-

based IDPS (Intrusion Detection & Prevention Systems) to allow rapid
detection of attacks by looking for specific patterns. These patterns can
include byte sequences in network traffic or known malicious instruction
sequences used by malware. There are more than 58,000 signatures in over
50 categories which are updated in real time to protect against new and
emerging exploits. The exploit categories include malware, phishing, coin
mining, and Trojan attacks.
DEPICTION
OF AZURE
PREMIUM
FEATURES
 AZURE FIREWALL MANAGER

• Azure firewall Manager allows to centrally manage Azure Firewalls across multiple subscriptions.
Firewall Manager leverages firewall policy to apply a common set of network/application rules
and configuration to the firewalls in your tenant. It provides features like:

1. Centralized route management

2. Integrate with third-party security-as-a-service (SEaaS) for advanced security
3. Regional availability

• Firewall Manager can provide security management for two network architecture types:

1. Secured Virtual Hub - create hub and spoke architectures

2. Hub Private Network - create and manage yourself
PRICING AND
SLA