[Question] Azure Firewall Network Rule/Application rule priorities.

[Question] Azure Firewall Network Rule/Application rule priorities.

I wanted to ask, since there are two priorities, one for each of the network rules and application rules, how do they work together?

I have the following scenario: I want to deny all traffic, except for the rules found in the application rule collection with more priority, and those with more priorities in the network rule collection.

For some reason, the application rules are not being used, even when they have more priority (for example 4000) over the network rules collection (for example 5000).

Let’s say I allow all traffic to example.com in the application rules, but I put deny all to * in the network rule, I still cannot reach example.com.

Why is that? And is there any way around it?

Below is what I have done:

https://i.redd.it/w86cb2zzl6o11.png

https://i.redd.it/fjtqap1hm6o11.png

https://i.redd.it/15wtlgm2m6o11.png

submitted by /u/GureenRyuu
[link] [comments]

Leave a Reply