Azure Firewall feature updates for July 2019
Posted on Thursday, August 8, 2019
Here are the Azure Firewall feature updates for July 2019:
- Multiple public IPs is generally available in all Azure public regions. Associate up to 100 public IP addresses with your firewall. For more information on scenarios and to get started, please refer to our documentation.
- Availability Zones is now generally available. Azure Firewall can be deployed to span multiple Availability Zones for increased availability. With this, your availability increases to 99.99 percent uptime when two or more Availability Zones are selected. The capability is generally available in all Azure regions that support Availability Zones. To get started, please refer to our documentation.
- SQL FQDN filtering is now in preview in all Azure regions. Configure SQL FQDNs in Azure Firewall application rules. This allows you to limit access from your virtual networks (VNets) to only the specified SQL server instances. Using this capability, you can filter traffic from your VNets to Azure SQL Database, Azure SQL Data Warehouse, Azure SQL Managed Instance, or SQL IaaS instances deployed in your VNets.
- Azure HDInsight FQDN tag is now in preview in all Azure public regions. Get greater control to restrict outbound traffic for HDI by using the FQDN tags for Azure Firewall. FQDN tags allow services like HDInsight to pre-configure their infrastructure dependencies, for example, Azure Storage account FQDNs used by HDInsight.
- Central management using partner solutions. Azure Firewall public REST APIs can be used by third party security policy management tools to provide a centralized management experience for Azure Firewalls, Network Security Groups (NSGs), and network virtual appliances (NVAs). Barracuda Cloud Security Guardian, AlgoSec CloudFlow, and Tufin Orca have integrated these APIs to provide central management for Azure Firewall.
Please refer to our recent blog post for more details.