Connect with experts and redefine what’s possible at work – join us at the Microsoft 365 Community Conference May 6-8. Learn more >
Recent DiscussionsMost RecentNewest TopicsMost LikesSolutionsTagged:TagRe: SEP 26, 2023 | Ask-Me-Anything | Azure Firewall, Azure WAF and Azure DDoSHello @htakur03, Thanks for your question. To begin with, we would recommend that you use Application Gateway (SKU version 2) as Application Gateway (SKU version 1) will be retired - Deprecation Announcement - April 23, 2023 - https://learn.microsoft.com/en-us/azure/application-gateway/v1-retirement. For the Azure Firewall Premium, the intermediate certificate is used. You can view the certificate requirements from this page - https://learn.microsoft.com/en-us/azure/firewall/premium-certificates. For production deployments, you should use an Enterprise PKI to generate the certificates that you use with Azure Firewall Premium. This is outlined in this document - https://learn.microsoft.com/en-us/azure/firewall/premium-deploy-certificates-enterprise-ca. For the Application Gateway backend settings, you will use the root certificate of the Azure Firewall. You can check out this link for the end-to-end setup of Application Gateway with Firewall - https://learn.microsoft.com/en-us/azure/architecture/example-scenario/gateway/application-gateway-before-azure-firewall. You can also check out this blog on Zero Trust with Azure Network Security, which shows the steps when deploying Application Gateway with WAF, Azure Firewall and Azure DDoS - https://techcommunity.microsoft.com/t5/azure-network-security-blog/zero-trust-with-azure-network-security/ba-p/3668280
Recent Blog ArticlesMost RecentMost LikesRe: Azure Network Security Ninja Training Hi AndrePKI Thanks for the suggestion. However, the current scope of this Ninja training is on Azure Firewall/Firewall Manager, Azure WAF and Azure DDoS. Re: Azure Network Security Ninja Training The Ninja training is continuously updated. The content is still valid. Azure WAF’s Bot Manager 1.1 and JavaScript Challenge: Navigating the Bot Threat Terrain Discover how Azure WAF’s Bot Manager 1.1 and the JavaScript Challenge elevate your bot protection strategy. In this blog, we explore how these advanced features in Azure Front Door and Appli...Independent Configuration of Size Enforcement and Inspection Limits in Application Gateway WAF Explore how the latest update to Azure's Application Gateway WAF enhances your security options by allowing independent configuration of size enforcement and inspection limits. This blog delve...Azure Firewall Protection Against Apache Struts Vulnerability - CVE-2023-50164 In this blog, we delve into the critical Apache Struts vulnerability CVE-2023-50164, demonstrating how Azure Firewall Premium can effectively block this high-severity threat. Learn about our d...Defending Against UDP Flood Attacks with Azure DDoS Protection Distributed Denial of Service (DDoS) attacks have become a frequent threat, wreaking havoc on businesses and their online services. These relentless assaults overwhelm network resources, rendering we...Enhancing Your Azure Security: Azure DDoS Sentinel Solution and WAF Playbook Integration In this blog, we explore the integration of the Azure DDoS Sentinel Solution with the WAF Playbook. DDoS attacks often serve as a cover for concealing more sophisticated attack vectors such as...Azure WAF Protection for Third Party Cloud Applications (AWS) Azure App Gateway + WAF may be used to publish and secure non azure applications (on-prem or other third-party clouds). You can also do a redirection (HTTP to HTTPS) to ensure all communicatio...Re: Building a POC for TLS inspection in Azure Firewall Hello @kudlatiger, is there an Azure Firewall Premium in the customer's Azure environment? Building a POC for TLS inspection in Azure Firewall Encrypted traffic can pose a security risk by hiding malicious traffic and illegal user activity. TLS inspection in Azure Firewall Premium provides the capability to decrypt, process the data,...
MicrosoftMicrosoftMicrosoftMicrosoft
