Author : MD TAREQ HASSAN | Updated : 2022/02/06
What is Policy in Azure Firewall?
- Firewall Policy is the new and recommended method to configure your Azure Firewall
- A Firewall Policy a global resource that can be used across multiple Azure Firewall instances in Secured Virtual Hubs and Hub Virtual Networks
- Policies work across regions and subscriptions
Policy Types
There are tow types of policies
- Standard Policy for both Firewall Standard SKU and Firewall Premium SKU
- Premium Policy for Firewall Premium SKU
Notes:
- Firewall Premium SKU only supports Policy Based deployment
- Firewall Standard SKU supports (as of February, 2022) both classic and policy based deployment, but policy based is recommended (classic might be deprecated in near future)
Hierarchy
- A policy can inherit from another policy
- New policies can be created from scratch or inherited from existing policies
- Inheritance allows us to create local firewall policies on top of organization mandated base policy
- Inheritance allows DevOps to create local firewall policies on top of organization mandated base policy
Create Premium Policy
- Go to https://portal.azure.com/#blade/HubsExtension/BrowseResourceBlade/resourceType/Microsoft.Network%2FfirewallPolicies
- ”+ Create” > Fillup details
- Create and Review > Create