Resolve an issue where traffic can't reach the firewall.
Traffic is not reaching the firewall
Traffic isn't reaching the firewall, so the firewall can't perform its
function.
Possible causes:
- Routing to the firewall subnet is not set up correctly
- Network security groups (NSGs) are preventing traffic from reaching the
firewall
Verify that routing for the firewall subnet is correct
-
Review Network Firewall Routing instructions.
-
Make corrections to the subnet route tables as necessary.
For more information about network routing, see:
Verify that network security group (NSG) rules don't block traffic to the
firewall
-
Review the firewall subnet NGS to ensure they don't interfere with
traffic to the firewall.
Security list or network security group (NSG) rules associated with the firewall subnet and VNICs are evaluated before the firewall. Be sure that any security list or NSG rules allow the traffic to enter the firewall so that it can be evaluated appropriately.
-
Make corrections to the subnet NSGs as necessary.
For more information about NSGs, see: