turbot/azure

steampipe plugin install azuresteampipe plugin install azure
On This Page
Get Involved

Table: azure_firewall

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It's a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

Examples

Azure firewall location and availability zone count info

select
name,
location,
jsonb_array_length(availability_zones) availability_zones_count
from
azure_firewall;

Basic IP configuration info

select
name,
ip #> '{properties, privateIPAddress}' private_ip_address,
ip #> '{properties, privateIPAllocationMethod}' private_ip_allocation_method,
split_part(
ip -> 'properties' -> 'publicIPAddress' ->> 'id',
'/',
9
) public_ip_address_id,
split_part(ip -> 'properties' ->> 'subnet', '/', 9) virtual_network
from
azure_firewall
cross join jsonb_array_elements(ip_configurations) as ip;

List the premium category firewalls

select
name,
sku_tier,
sku_name
from
azure_firewall
where
sku_tier = 'Premium';

List of firewalls where threat intel mode is off

select
name,
threat_intel_mode
from
azure_firewall
where
threat_intel_mode = 'Off';

.inspect azure_firewall

Azure Firewall

NameTypeDescription
additional_propertiesjsonbA collection of additional properties used to further config this azure firewall
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
application_rule_collectionsjsonbA collection of application rule collections used by Azure Firewall
availability_zonesjsonbA collection of availability zones denoting where the resource needs to come from
etagtextAn unique read-only string that changes whenever the resource is updated
firewall_policy_idtextThe firewallPolicy associated with this azure firewall
hub_private_ip_addressinetPrivate IP Address associated with azure firewall
hub_public_ip_address_countbigintThe number of Public IP addresses associated with azure firewall
hub_public_ip_addressesjsonbA collection of Public IP addresses associated with azure firewall or IP addresses to be retained
idtextContains ID to identify a firewall uniquely
ip_configurationsjsonbA collection of IP configuration of the Azure Firewall resource
ip_groupsjsonbA collection of IpGroups associated with AzureFirewall
nametextThe friendly name that identifies the firewall
nat_rule_collectionsjsonbA collection of NAT rule collections used by Azure Firewall
network_rule_collectionsjsonbA collection of network rule collections used by Azure Firewall
provisioning_statetextThe provisioning state of the firewall resource
regiontextThe Azure region/location in which the resource is located.
resource_grouptextThe resource group which holds this resource.
sku_nametextName of an Azure Firewall SKU
sku_tiertextTier of an Azure Firewall
subscription_idtextThe Azure Subscription ID in which the resource is located.
tagsjsonbA map of tags for the resource.
threat_intel_modetextThe operation mode for Threat Intelligence
titletextTitle of the resource.
typetextThe resource type of the firewall
virtual_hub_idtextThe virtualHub to which the firewall belongs