Skip to content

Configure deny on threat intel#

Security · Firewall · Azure.Firewall.Mode

Deny high confidence malicious IP addresses and domains.

Description#

Threat intelligence-based filtering can optionally be enabled on Azure Firewall. When enabled, Azure Firewall alerts and deny traffic to/ from known malicious IP addresses and domains.

By default, Azure Firewall alerts on triggered threat intelligence rules.

Recommendation#

Consider configuring Azure Firewall to alert and deny IP addresses and domains detected as malicious.


Last update: 2021-12-04