Skip to main content
DE / EN
Cloud / Azure / Products / Azure Firewall - Cloud Firewall

Azure Firewall - Cloud Firewall

Azure Firewall is a managed network firewall with stateful inspection, threat intelligence, and centralized rule management.

networking
Get Expert Support Documentation
Pricing Model Pay-as-you-go
Availability Global regions
Data Sovereignty EU regions available
Reliability 99.95% SLA

What is Azure Firewall?

Azure Firewall is a fully managed cloud-native firewall service with built-in high availability and unlimited scalability. The firewall provides stateful packet inspection, application-level filtering, and integrated threat intelligence from Microsoft.

Unlike Network Security Groups, Azure Firewall operates at Layer 3 through Layer 7 and can apply complex filtering rules based on FQDNs, URLs, and protocols.

Core Features

  • Stateful firewall with full L3-L7 filtering
  • FQDN-based rules for outbound traffic
  • Threat intelligence feed from Microsoft Security
  • NAT rules for inbound connections
  • Centralized management via Azure Firewall Manager
  • TLS inspection for encrypted traffic

Typical Use Cases

Hub-spoke network topology: Central firewall in the hub VNet that controls all traffic between spoke VNets and the internet.

Outbound traffic control: Restricting outbound traffic to allowed FQDNs to prevent data exfiltration and command-and-control connections.

Hybrid networking: Securing traffic between Azure and on-premises via ExpressRoute or VPN, with unified rules for both environments.

Benefits

  • No capacity planning required through automatic scaling
  • Integrated threat detection without additional tools
  • Centralized policy management for multiple firewalls
  • Native integration with Azure Monitor and Sentinel

Frequently Asked Questions

What does Azure Firewall cost?

Azure Firewall Standard costs approximately $1.25/hour for deployment plus approximately $0.016/GB of processed data. The Premium tier with TLS inspection costs approximately $1.75/hour.

What is the difference between Standard and Premium?

Azure Firewall Premium additionally offers TLS inspection, IDPS (Intrusion Detection and Prevention), URL filtering, and web categories. For workloads with compliance requirements, Premium is recommended.

Can Azure Firewall defend against DDoS attacks?

Azure Firewall provides basic protection. For comprehensive DDoS protection, Azure DDoS Protection Standard should be enabled, which works together with Azure Firewall.

How do I configure rules for multiple firewalls?

Azure Firewall Manager enables centralized management of policies across multiple firewalls and regions. Policies can be structured hierarchically.

Integration with innFactory

As a Microsoft Solutions Partner, innFactory supports you with Azure Firewall: network architecture, rule design, threat intelligence, and cost optimization.

Quick Links

Documentation Console

Microsoft Solutions Partner

innFactory is a Microsoft Solutions Partner. We provide expert consulting, implementation, and managed services for Azure.

Microsoft Solutions Partner Microsoft Data & AI

Similar Products from Other Clouds

Other cloud providers offer comparable services in this category. As a multi-cloud partner, we help you choose the right solution.

AWS

Amazon API Gateway - Managed API Platform

Amazon API Gateway is a fully managed service for creating, publishing, and managing REST, HTTP, and WebSocket APIs.

Pricing Pay per request
SLA 99.95% availability
Compare →
AWS

Amazon CloudFront: Content Delivery Network

Amazon CloudFront is a global CDN with 450+ edge locations for fast content delivery worldwide.

Pricing Pay for data transfer and requests
SLA 99.9% availability
Compare →
AWS

Amazon Route 53 - DNS Service

Amazon Route 53 is a highly available DNS web service with domain registration, routing policies, and health checks.

Pricing Pay per hosted zone and queries
SLA 100% availability SLA
Compare →
AWS

Amazon VPC - AWS Networking & Content Delivery Service

Amazon VPC is an AWS service for Network isolation and Multi-tier web applications. GDPR-compliant in EU regions.

Pricing No charge for VPC itself, pay for …
SLA N/A (no charge service)
Compare →
AWS

AWS App Mesh - Service Mesh for Microservices

AWS App Mesh is a service mesh for microservices with traffic routing, observability, and communication control.

Pricing No charge, pay for resources
SLA N/A
Compare →
AWS

AWS Cloud Map: Service Discovery

AWS Cloud Map enables service discovery for microservices and containers with automatic registration.

Pricing Pay per resource and query
SLA 99.9% availability
Compare →

31 comparable products found across other clouds.

Ready to start with Azure Firewall - Cloud Firewall?

Our certified Azure experts help you with architecture, integration, and optimization.

Schedule Consultation