July 27, 2024

[ad_1]

We’re comfortable to share a number of key Azure Firewall capabilities in addition to updates on current necessary releases into normal availability (GA) and preview.

  • New GA areas in Qatar central, China East, and China North

  • IDPS Non-public IP ranges now typically accessible.

  • Single Click on Improve/Downgrade now in preview.

  • Enhanced Menace Intelligence now in preview.

  • KeyVault with zero web publicity now in preview.

Azure Firewall is a cloud-native firewall as a service providing that permits prospects to centrally govern and log all their visitors flows utilizing a DevOps method. The service helps each utility and network-level filtering guidelines and is built-in with the Microsoft Menace Intelligence feed to filter recognized malicious IP addresses and domains. Azure Firewall is extremely accessible with built-in auto-scaling.

New GA areas in Qatar central, China East, and China North

We’re comfortable to announce that Azure Firewall Customary, Azure Firewall Premium, and Azure Firewall Supervisor are actually typically accessible in three new areas: Qatar Central, China East, and China North.

With these three new areas, Azure Firewall is now accessible in 51 areas worldwide!

IDPS Non-public IP ranges now GA

A community intrusion detection and prevention system (IDPS) let you monitor community actions for malicious exercise, log details about this exercise, report it, and optionally try to dam it.

In Azure Firewall Premium IDPS, Non-public IP handle ranges are used to determine visitors path (inbound, outbound, or inside) to permit correct matches with IDPS signatures. By default, solely ranges outlined by Web Assigned Numbers Authority (IANA) RFC 1918 are thought-about personal IP addresses. To switch your personal IP addresses, now you can simply edit, take away, or add ranges as wanted.

Portal experience for IDPS Private IP range capability for Azure Firewall.

Single Click on Improve/Downgrade (preview)

With this new functionality, prospects can simply improve their present Firewall Customary SKU to Premium SKU in addition to downgrade from Premium to Customary SKU. The method is absolutely automated and has zero service downtime.

Within the improve course of, customers can choose the coverage to be connected to the upgraded Premium SKU. Both by utilizing an present Premium Coverage or by using their present Customary Coverage. Prospects can make the most of their present Customary coverage and let the system robotically duplicate, improve to Premium Coverage, and fix it to the newly created Premium Firewall.

This new functionality is offered by means of the Azure portal as seen within the screenshot beneath, in addition to through PowerShell and Terraform.

Portal experience for single click upgrade/downgrade capability for Azure Firewall

Enhanced Menace Intelligence (preview)

Menace Intelligence is info a company makes use of to grasp the threats which have, will, or are presently concentrating on the group. This data is used to organize, forestall, and determine cyber threats seeking to make the most of invaluable assets. Azure Firewall Menace intelligence info is sourced from the Microsoft Menace Intelligence feed, which incorporates a number of sources together with the Microsoft Cyber Safety group.

Menace Intelligence-based filtering might be enabled in your firewall to alert and deny visitors from/to recognized malicious IP addresses and FQDNs. With the brand new enhancement, Azure Firewall Menace Intelligence has extra granularity for filtering based mostly on malicious URLs. Because of this prospects might have entry to a sure area by means of a particular URL on this area shall be denied by Azure Firewall if recognized as malicious.

For optimum granularity, prospects can make the most of Menace Intelligence permit listing to bypass risk intelligence validation on trusted FQDNs, IP addresses, ranges, and subnets.

In HTTPS, the URL is encrypted, thus prospects can make the most of Azure Firewall Premium TLS inspection to permit URL-based Menace Intelligence additionally for his or her encrypted visitors.

With Azure Firewall IDPS, Menace Intelligence, and TLS inspection, prospects can enhance their safety posture to develop into higher protected towards future threats.

KeyVault with zero web publicity (preview)

In Azure Firewall Premium TLS inspection, prospects are required to deploy their intermediate CA certificates in Azure KeyVault. Now that Azure firewall is listed as a trusted Azure KeyVault service, prospects can eradicate any web publicity of their Azure KeyVault.

At Microsoft, we’re continually evolving Azure Firewall to fulfill our prospects’ wants and assist them strengthen their safety and achieve efficiencies. Final month, we introduced the preview of Coverage Analytics for Azure Firewall, which helps enhance your safety posture by offering vital insights and suggestions for optimizing firewall guidelines. We additionally just lately introduced the preview of Azure Firewall Fundamental, a brand new SKU of Azure Firewall designed to fulfill the wants of SMBs by offering enterprise-grade safety of their cloud setting at an inexpensive value level. We plan to share additional enhancements to Azure Firewall very quickly, together with new troubleshooting capabilities. Please keep tuned!

Study extra

[ad_2]

Source link

Related News

Empowering operators through generative AI technologies with Azure for Operators

April 17, 2024

Cloud Cultures, Part 6: Accelerating collective growth in Malaysia

April 15, 2024

You may have missed

Hyperdisk Balanced for GKE now available

April 17, 2024

Amazon CloudWatch Internet Weather Map – View and analyze internet health

April 17, 2024

Empowering operators through generative AI technologies with Azure for Operators

April 17, 2024

BigQuery multimodal embeddings and embedding generation

April 15, 2024

Cloud Cultures, Part 6: Accelerating collective growth in Malaysia

April 15, 2024

Google Cloud Next 2024 wrap up

April 13, 2024