1

Hello,

Question for anyone that has been in this situation before, or something similar.

We are a Sonicwall shop so to speak. Global network of NSA 4700, 2700, TZ 370 and 270’s.
All of these are managed in Sonicwall’s cloud NSA - it works pretty good.

For our Azure infrastructure, we are using a couple Azure Firewalls.
I guess my main question would be, is the Azure Firewall worth it? It seems like we are paying a lot of money to have a rather basic firewall deployed - these 2 Azure Firewalls are roughly $2500/mo
Also, it is not as intuitive as Sonicwall lol.

I kind of want to test out Sonicwall’s NSv270 in Azure, and maybe I am missing something obvious, but seeing as I can purchase a NSv270 with 5 years of advanced software and support for $7k it would seem this is not even in the ballpark. (yes, I know there will be a cost for running this VM).

We are using a mix of S2S VPNs and BGP routing for connecting to the Azure Firewalls.

Thoughts? Tips? Advice?

Thanks!

@SonicWall

3 Spice ups
2

The only thing that I can say is that I have been through a fair bit of SonicWALL training over the years to re-up my certification and the labs always utilize NSv instances.

They are definitely quirky and not quite as feature rich as the physical devices.

However, there is a lot to be said about keeping a homogenized environment. If the features of the NSv’s match your needs, then I would say go for it.

If it were me, I would just try it out in a testing capacity and see if it works, and then go from there.

3 Spice ups
3

We recently did exactly the same project with Fortigates.
Rolled out hardware units at each of our sites (currently 8) and installed a virtualized instance of a fortigate in Azure.

Previously there was a mixture of old/dated firewalls at site and in Azure there was only NSG for protection (i know)

Trying to retrofit the v-firewall into Azure was the tricky part.
but it was well worth the effort in the end.

2 Spice ups