Configure deny on threat intel#
Deny high confidence malicious IP addresses and domains.
Threat intelligence-based filtering can optionally be enabled on Azure Firewall. When enabled, Azure Firewall alerts and deny traffic to/ from known malicious IP addresses and domains.
By default, Azure Firewall alerts on triggered threat intelligence rules.
Consider configuring Azure Firewall to alert and deny IP addresses and domains detected as malicious.