How firewall profiles and overrides are applied
Firewall Override rules (at the virtual datacenter level) are evaluated prior to the Firewall Profiles rules (at the VNET level) and will override the VNET Firewall Profile rules if there is a conflict.
Firewall rules follows this iptables rule chain:
Rules are evaluated in order from top to bottom
If the rule matches, it executes the specified action
If the rule does not match, it moves to the next rule
All communication is allowed unless otherwise specified
Give feedback