Add native Azure Firewall support

[yacovsekli]

How to categorize this issue?
/area networking
/area ops-productivity
/area security
/kind enhancement
/priority medium

What would you like to be added:
Support for creating and configuring Azure Firewall (with advanced features such as threat detection) as part of the cluster creation process in Gardener-managed Azure clusters.

Why is this needed:
Currently, Azure does not support attaching a firewall to an existing virtual network. A new subnet and public IP must be created for the firewall.
Since Gardener manages the network of the cluster, if a new firewall is created manually, it has no effect unless all traffic is routed through the designated public IP.
To ensure secure and production-ready clusters, there should be an option in the cluster creation flow to provision the network together with Azure Firewall and its configurations. This would allow Gardener to handle routing correctly and integrate firewall protection natively into the cluster lifecycle.

[gardener-prow]

@yacovsekli: The label(s) priority/medium cannot be applied, because the repository doesn't have them.

In response to this:

How to categorize this issue?
/area networking
/area ops-productivity
/area security
/kind enhancement
/priority medium

What would you like to be added:
Support for creating and configuring Azure Firewall (with advanced features such as threat detection) as part of the cluster creation process in Gardener-managed Azure clusters.

Why is this needed:
Currently, Azure does not support attaching a firewall to an existing virtual network. A new subnet and public IP must be created for the firewall.
Since Gardener manages the network of the cluster, if a new firewall is created manually, it has no effect unless all traffic is routed through the designated public IP.
To ensure secure and production-ready clusters, there should be an option in the cluster creation flow to provision the network together with Azure Firewall and its configurations. This would allow Gardener to handle routing correctly and integrate firewall protection natively into the cluster lifecycle.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[gardener-robot]

@yacovsekli Label priority/medium does not exist.