AdminAzure Networking Team (Product Manager, Microsoft Azure)

← Customer Feedback for ACE Community Tooling

My feedback

  1. Azure firewall application rule does not support non-http80/http8080/https443 protocol, for example SMTP. Please add the new feature.

    44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    triaged  ·  5 comments  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Azure Firewall supports HTTP/S and MSSQL in application rules. We are adding FQDN filtering in network rules based on DNS resolution for all TCP/UDP protocols. Tentative preview is early Q3 CY2020.

  2. update DNS settings for VNET without restart of the VMs to take effect

    186 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    12 comments  ·  Networking » Virtual Network  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure Networking Team (Product Manager, Microsoft Azure) supported this idea  · 

  3. There is a bug in firewall settings

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    triaged  ·  0 comments  ·  Networking » Virtual Network  ·  Flag idea as inappropriate…  ·  Admin →

  4. Update Subscription Limits Documentation

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    2 comments  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    triaged  ·  Adminazurecxpuservoice (Product Manager, Microsoft Azure) responded

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Azure Firewall now supports up to 100 public IPs. See more here - https://docs.microsoft.com/en-us/azure/firewall/overview#multiple-public-ip-addresses

  5. Offer NAT as a Service

    348 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    12 comments  ·  Networking » Virtual Network  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure Networking Team (Product Manager, Microsoft Azure) supported this idea  · 

  6. Cross-subscription VNet (Shared VNet)

    234 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    need-feedback  ·  6 comments  ·  Networking » Virtual Network  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure Networking Team (Product Manager, Microsoft Azure) supported this idea  · 
    AdminAzure Networking Team (Product Manager, Microsoft Azure) shared this idea  · 

  7. Reduce update times for Application Gateways

    61 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    3 comments  ·  Networking » Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    The new V2 (Autoscaling) SKU reduces the update times to under a min in most cases. https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-autoscaling-zone-redundant

  8. Increase listener limit for Application Gateway

    426 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    24 comments  ·  Networking » Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    We are working on supporting wildcard listeners in the near term. As mentioned before, if you need more than 100 listeners you can open a support ticket with your specific scenario details. The current limit of 100 is set based on performance tests and we are unable to set it to a much higher value for all customers at this time as it may degrade performance depending on individual scenarios. That being said, we continue to review periodically and optimize our data plane so that higher limits may be possible.

  9. Support URL rewriting with Application Gateway

    1,240 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    50 comments  ·  Networking » Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    need-feedback  ·  AdminAzure Networking Team (Product Manager, Microsoft Azure) responded

    URL rewrite for Application Gateway v2 is currently in public preview! With this, you can now rewrite URL path and query string parameters based on a condition. The condition will be on request or response parameters.

    Also, you get the ability to choose the routing to a backend pool based on the original URL or the rewritten URL.

    We’d love for you to try it out and let us know your valuable feedback. Learn more here – https://aka.ms/urlrewritepreview and https://aka.ms/urlrewriteconfiguration

    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Please be assured we are working on this feature as one of our top priorities and will announce it as soon as it's ready.

  10. Disable source NAT on incoming sessions on Azure Firewall

    111 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    4 comments  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    SNAT on incoming connections is done do ensure symmetric routing across the underlying firewall nodes for returning packets. This is needed as the Standard Load Balancer has TCP state checking rules today that will drop the session if the returning packet comes from a different firewall physical node. This will be fixed in the future, but no ETA yet.

  11. Ability to use Azure tags as source and/or destination in the Azure firewall

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    2 comments  ·  Networking » Network Security Groups  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Thanks. We will add this feature to our backlog to consider for a future release.

  12. More public IPs on Azure Firewall

    119 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    8 comments  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Thanks for the feedback. This feature is high on our list - tentatively for H1 2019.

  13. Add Service Tag (Internet) to Azure Firewall Network Rule

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    2 comments  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    We are working on adding Service Tags to Azure Firewall network rules and hope to have it released in Q1 2019.

  14. separate DNS Zone Contributor’s permission to create DNS zones and manage DNS Zone records

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    1 comment  ·  Networking » DNS  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Please elaborate on the scenario. You can already provide permissions on a zone to a specific user such that user is able to manage records within that zone but not other zones. Please see https://docs.microsoft.com/en-us/azure/dns/dns-protect-zones-recordsets#zone-level-rbac

  15. Configurable HTTP status code for Load Balancer Probe

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    2 comments  ·  Networking » Load Balancer  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    HTTP and HTTPS probes use an HTTP GET. Can you please expand on the scenario where something other than 200 is a valid response for this operation? 201 for example is typically used for a POST.

  16. Azure Firewall - NAT Rules Clarification

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    1 comment  ·  Networking » Azure Firewall  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Thanks for the feedback. Agree with the feedback on destination address. We will explore having it as a drop down list that provides the firewall public IPs. This should eliminate also the confusion with the translated address.

  17. RST packet is sent from probe of load balancer.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    4 comments  ·  Networking » Load Balancer  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    @hisashima load balancer uses (a) today. why do you need the behavior described in (b). can you elaborate on the scenario and impact please?

  18. Provide a 301 (Permanent) redirect service for apex (naked) domains

    1,032 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    24 comments  ·  Networking » DNS  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    While we don't offer a 301 redirect service, we just announced support for Alias records which will let you point to any Public IP-backed resource (such as Application Gateway) or a Traffic Manager profile, from your zone apex. This may be an alternative if the need is to make sure both the zone apex and say the www subdomain point to the same load balanced application. For more details see https://azure.microsoft.com/en-us/blog/announcing-alias-records-for-azure-dns/

  19. Allow Network Security Groups (NSGs) to Reference Application Security Groups (ASGs) From Different Location

    437 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    21 comments  ·  Networking » Network Security Groups  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure Networking Team (Product Manager, Microsoft Azure) supported this idea  · 

  20. pls put the two powershell scripts together

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    1 comment  ·  Networking » VPN Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    AdminAzure Networking Team (Product Manager, Microsoft Azure) commented  · 

    Hi, can you please indicate to which article/documentation you're referring?

← Previous 1

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice