I'm exploring options for a firewall solution to help manage connections to our Azure Virtual Desktops (AVDs). It seems like Azure Firewalls are on the pricey side. Given our fairly simple network setup with just a few virtual machines, should I consider alternatives like a Palo Alto Firewall? How effective is the basic Azure Firewall? Another idea we had was to route traffic back through our on-premises firewall using a VPN. What are your thoughts?
5 Answers
You might not even need a firewall for Azure. Most connections go through Microsoft's RD Gateway, so unless you're exposing your session hosts to the internet with a public IP, you're probably safe. If you are concerned about controlling outbound traffic, then that's a different conversation altogether.
Just a heads up, Network Virtual Appliances (NVAs) can get expensive since they usually run as Azure VMs. A lot of small to medium-sized businesses I work with don’t use firewalls in Azure because of the costs. But it really depends on how big your organization is.
Check out Enforza.io as a potential alternative for firewall and NAT gateway needs. It’s designed for scenarios like yours, and I know the founder personally.
If you're looking for a cost-effective solution, consider Cloudflare Zero Trust. It's free for up to 50 users and could be a viable alternative.
Azure's basic firewall comes in at around $300 a month. If it gives you peace of mind, it might be worth the investment.
Related Questions
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads