cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure Firewall Threat Intelligence

53CU1t
Copper Contributor

‎May 13 2022 01:40 AM

‎May 13 2022 01:40 AM

Azure Firewall Threat Intelligence

Hi, 

i enabled Azure Firewall Threat Intelligence Service "Deny and Alert" in my Policy and tested via testmaliciousdomain.eastus.cloudapp.azure.com like in microsoft docs Threat Intelligence-gestütztes Filtern für Azure Firewall | Microsoft Docs but curl don't work and it should by handele via build default rule of threat intel in firewall ruleset. Does anyone have experince if the service works and how to get a valid test?

Regards Sebastian

945 Views
1 Like
1 Reply
Reply
1 Reply
fernandoloureiro

‎May 25 2022 03:47 PM

‎May 25 2022 03:47 PM

Re: Azure Firewall Threat Intelligence

Hi,
I also have the Threat Intelligence Service "Deny and Alert" in my Policy. Tried to access the testmaliciousdomain.eastus.cloudapp.azure.com both http and https but in fact i ended up with not having access because this url timed out. No logs have been generated on the az firewall. I think that curl is not the best approach to make this test. I will create a dummy vm and with a browser try to access some services of test like wicar to see if the behaviour is the same. Will share the test output later.
1 Like
Reply