![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 14.000000000000002%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYM%3C/text%3E%3C/svg%3E)
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
Hi Yashas,
The firewall processes rules in a top-down approach, evaluating all traffic against the defined rules to determine if it matches an allow or deny condition. If no rule allows the traffic, it is denied by default.
In this scenario Rule collections are processed according to the rule type in priority order, lower numbers to higher numbers from 100 to 65,000. The order is DNAT rules, then Network rules, then Application rules are processed.
For your requirement only App Rule is required as you are doing FQDN filtering, so try that and remove the Network rule.https://learn.microsoft.com/en-us/azure/firewall/domain-filtering-overview
Hope this helps.
JS
==
Please Accept the answer if the information helped you. This will help us and others in the community as well.