Azure Firewall web categories check not working

Question

Hi,&nbsp;My Azure Firewall has been set up with network and application rules, and they work as expected.However, after enabling TLS inspection, I am unable to check web categories of URLs successfully.&nbsp;Under Category check, when typing https://www.google.com&nbsp;returns category as 'Search engines + portals'. However, changing the URL https://www.google.com/mail&nbsp;does not return the expected category 'Web-based email'.&nbsp;NOTE: TLS inspection has been configured with the default Azure Key Vault.&nbsp;Can some one give me pointers to get the web category check working?&nbsp;ThanksJames

kidd_ip · Answer

jameswonderguy&nbsp;&nbsp;Are you using Azure firewall standard? Please refer 'Web categories' under below article:&nbsp;https://learn.microsoft.com/en-us/azure/firewall/premium-features&nbsp;

jameswonderguy · Answer

Kidd_Ip&nbsp;&nbsp;I am using Azure Firewall Premium, and am unable to get web categories to work.&nbsp;Since TLS inspection is enabled, I am assuming that the firewall should differentiate between "www.google.com/news" (which I think is 'http') and "https://www.google.com/news". This want this to work, but it is not working for me.&nbsp;Once the above works, I need to use the TLS inspection functionality within "Application Rules" and "URL Filtering" for HTTPS traffic.

Forum Discussion

Azure Firewall web categories check not working

Share

Resources