azure-firewall-manager

Expert knowledge for Azure Firewall Manager development including best practices, decision making, security, and configuration. Use when building, debugging, or optimizing Azure Firewall Manager applications. Not for Azure Firewall (use azure-firewall), Azure Virtual Network Manager (use azure-virtual-network-manager), Azure Network Watcher (use azure-network-watcher), Azure Networking (use azure-networking).

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "azure-firewall-manager" with this command: npx skills add microsoftdocs/agent-skills/microsoftdocs-agent-skills-azure-firewall-manager

Azure Firewall Manager Skill

This skill provides expert guidance for Azure Firewall Manager. Covers best practices, decision making, security, and configuration. It combines local quick-reference content with remote documentation fetching capabilities.

How to Use This Skill

IMPORTANT for Agent: This file may be large. Use the Category Index below to locate relevant sections, then use read_file with specific line ranges (e.g., L136-L144) to read the sections needed for the user's question

IMPORTANT for Agent: If metadata.generated_at is more than 3 months old, suggest the user pull the latest version from the repository. If mcp_microsoftdocs tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

  • Preferred: Use mcp_microsoftdocs:microsoft_docs_fetch with query string from=learn-agent-skill. Returns Markdown.
  • Fallback: Use fetch_webpage with query string from=learn-agent-skill&accept=text/markdown. Returns Markdown.

Category Index

CategoryLinesDescription
Best PracticesL32-L36Details on how Azure Firewall evaluates and processes rules, rule collection groups, and policies, including priority, matching logic, and traffic filtering behavior
Decision MakingL37-L41Guidance on choosing between a secured virtual hub and a hub virtual network in Azure Firewall Manager, including architecture, security, routing, and management trade-offs.
SecurityL42-L48Configuring Azure Firewall Manager for security: DDoS Protection plans, centralized WAF policy management, and threat intelligence-based traffic filtering.
ConfigurationL49-L57Configuring Azure Firewall policies: DNS/DNS proxy, FQDN filtering, IP Groups, rule migration, rule hierarchy/inheritance, and securing private endpoint traffic in Virtual WAN.

Best Practices

TopicURL
Understand Azure Firewall rule processing order and logichttps://learn.microsoft.com/en-us/azure/firewall-manager/rule-processing

Decision Making

TopicURL
Choose between secured virtual hub and hub virtual networkhttps://learn.microsoft.com/en-us/azure/firewall-manager/vhubs-and-vnets

Security

TopicURL
Configure Azure DDoS Protection plans via Firewall Managerhttps://learn.microsoft.com/en-us/azure/firewall-manager/configure-ddos
Centrally manage WAF policies with Azure Firewall Managerhttps://learn.microsoft.com/en-us/azure/firewall-manager/manage-web-application-firewall-policies
Configure threat intelligence-based filtering in Azure Firewall policyhttps://learn.microsoft.com/en-us/azure/firewall-manager/threat-intelligence-settings

Configuration

TopicURL
Configure DNS servers and DNS proxy in Azure Firewall policyhttps://learn.microsoft.com/en-us/azure/firewall-manager/dns-settings
Use FQDN filtering in Azure Firewall network ruleshttps://learn.microsoft.com/en-us/azure/firewall-manager/fqdn-filtering-network-rules
Configure and reuse IP Groups in Azure Firewall policyhttps://learn.microsoft.com/en-us/azure/firewall-manager/ip-groups
Migrate Azure Firewall rules to Firewall policy with PowerShellhttps://learn.microsoft.com/en-us/azure/firewall-manager/migrate-to-policy
Secure private endpoint traffic in Azure Virtual WAN with Firewall ruleshttps://learn.microsoft.com/en-us/azure/firewall-manager/private-link-inspection-secure-virtual-hub
Define rule hierarchy and inheritance with Azure Firewall policyhttps://learn.microsoft.com/en-us/azure/firewall-manager/rule-hierarchy

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

azure-security

No summary provided by upstream source.

Repository SourceNeeds Review
7-microsoftdocs
Automation

azure-architecture

No summary provided by upstream source.

Repository SourceNeeds Review
10-microsoftdocs
Automation

azure-logic-apps

No summary provided by upstream source.

Repository SourceNeeds Review
8-microsoftdocs
Automation

azure-blob-storage

No summary provided by upstream source.

Repository SourceNeeds Review
8-microsoftdocs
azure-firewall-manager | V50.AI