Azure Firewalls

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
22 hours 25 minutes
Difficulty
Intermediate
CEU/CPE
24
Video Transcription
00:00
>> What's up, everybody? Welcome back.
00:00
In this lecture we're going to be talking
00:00
about Azure Firewalls,
00:00
continuing our conversation on
00:00
cybersecurity controls for the network.
00:00
The learning objectives for this lecture
00:00
>> are going to be
00:00
>> to break down the Azure Firewall service
00:00
as a whole and understand some key differences
00:00
between the pricing model of this particular service.
00:00
Azure Firewall is a managed service.
00:00
It's not something that you're going to be
00:00
deploying on your own.
00:00
It's not like a software
00:00
that you're installing on a virtual machine,
00:00
and maintaining, and patching,
00:00
and all that fun stuff,
00:00
[NOISE] this is something that
00:00
Azure is taking care of for you.
00:00
There is a free version and then there is
00:00
a premium version where you pay a little bit extra.
00:00
You get some cool features.
00:00
This is Azure's version.
00:00
Now, one thing I want to mention is
00:00
that if you're interested
00:00
in using a proprietary solution, not Azure's,
00:00
maybe a different vendor like
00:00
Palo Alto or something like that,
00:00
you can always go to
00:00
the Azure marketplace and find it and stand it up,
00:00
and if it's not there,
00:00
sometimes vendors do have
00:00
some easily deployable solutions for Azure,
00:00
they're azure friendly and they can just
00:00
spin it up for you and maintain it themselves.
00:00
You have options. But as far as Azure Firewall,
00:00
this is their managed solution,
00:00
so I wanted to make that quick distinction
00:00
between the differences there.
00:00
This is going to be used to protect
00:00
your resources within a virtual network.
00:00
This is one of the security controls.
00:00
This is not the end all be all.
00:00
Some people that don't work
00:00
in cybersecurity tend to think that's like,
00:00
oh, we have a Firewall and so our network is secure.
00:00
It's like the first line of defense,
00:00
but I wouldn't say that you're explicitly secure.
00:00
One thing that is pretty nice
00:00
about Azure Firewall is that it is highly
00:00
available and highly redundant
00:00
and up and all that good stuff,
00:00
so you know that you can depend on it
00:00
being present and detecting on
00:00
vulnerabilities or threats that are
00:00
really coming in and attacking your network,
00:00
so you have those metrics
00:00
and you can leverage and depend on them,
00:00
integrate them with your SIM,
00:00
and make sure that you're staying on top
00:00
of the threat intelligence that's coming in.
00:00
That being said, it does support threat intelligence.
00:00
You can turn on alerting,
00:00
you can deny traffic from
00:00
malicious IPs, all that good stuff,
00:00
so it does provide a lot of
00:00
those offerings that most Firewalls do,
00:00
and it's something that's baked right
00:00
into your Azure network.
00:00
Let's go ahead and start talking about
00:00
the distinction between Azure Firewall premium
00:00
and the free version.
00:00
A lot of people like to have Firewalls
00:00
that do TLS inspection,
00:00
they do web categories and filtering,
00:00
basically preventing certain size from
00:00
being accessed what not,
00:00
maybe they do intrusion detection and prevention,
00:00
system logging, and monitoring, and alerting.
00:00
You can do all of
00:00
these features with Azure Firewall premium,
00:00
the pricing is different.
00:00
I didn't log it here because the pricings do change,
00:00
but you can check the documentation
00:00
and see what that would reflect for
00:00
you and your particular region
00:00
or wherever you're located across the world.
00:00
But here are some of the features you
00:00
can get with Azure Firewall premium.
00:00
You can get TLS inspection,
00:00
which decrypts the data and processes the data and
00:00
re-encrypts it for transmission outbound,
00:00
so data comes in, encrypted.
00:00
It can decrypt that process and
00:00
then re-encrypt it before
00:00
>> it shifts it back out the door.
00:00
>> For intrusion detection, like I said earlier,
00:00
it's going to be monitoring
00:00
for anything that seems suspicious,
00:00
and making sure that you are alerted,
00:00
and it can prevent further activity from
00:00
those suspicious metrics or signatures,
00:00
and make sure that at least the traffic is being
00:00
put on hold until you make an exception for it,
00:00
or you go ahead and
00:00
explicitly deny it and we just shut it down from there.
00:00
In addition to that, Azure Firewall
00:00
does offer URL filtering.
00:00
It does offer web categories and category exceptions,
00:00
so you can't set priority rules
00:00
on the various categories in
00:00
which you want to block
00:00
or makes sure that things are
00:00
being explicitly blocked by.
00:00
These are pretty self-explanatory,
00:00
so I'm not going to talk to them in detail,
00:00
but these are really just to
00:00
highlight the various features that
00:00
are available to you with Azure Firewall premium.
00:00
All right, everybody, this was a short lecture,
00:00
but now you should have
00:00
a pretty decent understanding of the differences
00:00
between the free version
00:00
of Firewall and the premium version
00:00
and what you can get out of it.
00:00
I hope this was helpful, if you have questions,
00:00
feel free to reach out, and if not,
00:00
go ahead and jump into
00:00
the next lesson where you're going to actually be
00:00
configuring your very own Azure Firewall in addition to
00:00
a lot of the other security controls we've been
00:00
talking about just creating a holistic,
00:00
secure virtual network in Azure.
00:00
All right, I will see you after that.
Up Next
Azure Network Security Lab
2h
Azure VPN Gateway
3m
Module 4 Conclusion
1m