We’re comfortable to share a number of key Azure Firewall capabilities that at the moment are typically out there in addition to updates on current essential releases into basic availability (GA) and preview.
- New GA areas in Qatar central, China East, and China North
- IDPS Non-public IP ranges now typically out there.
- Single Click on Improve/Downgrade now in preview.
- Enhanced Risk Intelligence now in preview.
- KeyVault with zero web publicity now in preview.
Azure Firewall is a cloud-native firewall as a service providing that permits clients to centrally govern and log all their site visitors flows utilizing a DevOps strategy. The service helps each software and network-level filtering guidelines and is built-in with the Microsoft Risk Intelligence feed to filter identified malicious IP addresses and domains. Azure Firewall is extremely out there with built-in auto-scaling.
New GA areas in Qatar central, China East, and China North
We’re comfortable to announce that Azure Firewall Commonplace, Azure Firewall Premium, and Azure Firewall Supervisor at the moment are typically out there in three new areas: Qatar Central, China East, and China North.
With these three new areas, Azure Firewall is now out there in 38 areas worldwide!
IDPS Non-public IP ranges now GA
A community intrusion detection and prevention system (IDPS) help you monitor community actions for malicious exercise, log details about this exercise, report it, and optionally try to dam it.
In Azure Firewall Premium IDPS, Non-public IP handle ranges are used to determine site visitors route (inbound, outbound, or inner) to permit correct matches with IDPS signatures. By default, solely ranges outlined by Web Assigned Numbers Authority (IANA) RFC 1918 are thought of personal IP addresses. To change your personal IP addresses, now you can simply edit, take away, or add ranges as wanted.
Single Click on Improve/Downgrade (preview)
With this new functionality, clients can simply improve their current Firewall Commonplace SKU to Premium SKU in addition to downgrade from Premium to Commonplace SKU. The method is absolutely automated and has zero service downtime.
Within the improve course of, customers can choose the coverage to be hooked up to the upgraded Premium SKU. Both by utilizing an current Premium Coverage or by using their current Commonplace Coverage. Clients can make the most of their current Commonplace coverage and let the system routinely duplicate, improve to Premium Coverage, and connect it to the newly created Premium Firewall.
This new functionality is obtainable by means of the Azure portal as seen within the screenshot beneath, in addition to by way of PowerShell and Terraform.
Enhanced Risk Intelligence (preview)
Risk Intelligence is data a corporation makes use of to grasp the threats which have, will, or are at the moment focusing on the group. This data is used to organize, forestall, and determine cyber threats seeking to make the most of helpful sources. Azure Firewall Risk intelligence data is sourced from the Microsoft Risk Intelligence feed, which incorporates a number of sources together with the Microsoft Cyber Safety crew.
Risk Intelligence-based filtering may be enabled to your firewall to alert and deny site visitors from/to identified malicious IP addresses and FQDNs. With the brand new enhancement, Azure Firewall Risk Intelligence has extra granularity for filtering primarily based on malicious URLs. Because of this clients might have entry to a sure area by means of a selected URL on this area will probably be denied by Azure Firewall if recognized as malicious.
For optimum granularity, clients can make the most of Risk Intelligence enable checklist to bypass risk intelligence validation on trusted FQDNs, IP addresses, ranges, and subnets.
In HTTPS, the URL is encrypted, thus clients can make the most of Azure Firewall Premium TLS inspection to permit URL-based Risk Intelligence additionally for his or her encrypted site visitors.
With Azure Firewall IDPS, Risk Intelligence, and TLS inspection, clients can enhance their safety posture to turn out to be higher protected in opposition to future threats.
KeyVault with zero web publicity (preview)
In Azure Firewall Premium TLS inspection, clients are required to deploy their intermediate CA certificates in Azure KeyVault. Now that Azure firewall is listed as a trusted Azure KeyVault service, clients can remove any web publicity of their Azure KeyVault.
At Microsoft, we’re continuously evolving Azure Firewall to satisfy our clients’ wants and assist them strengthen their safety and achieve efficiencies. Final month, we introduced the preview of Coverage Analytics for Azure Firewall, which helps enhance your safety posture by offering important insights and suggestions for optimizing firewall guidelines. We additionally just lately introduced the preview of Azure Firewall Fundamental, a brand new SKU of Azure Firewall designed to satisfy the wants of SMBs by offering enterprise-grade safety of their cloud setting at an inexpensive value level. We plan to share additional enhancements to Azure Firewall very quickly, together with new troubleshooting capabilities. Please keep tuned!