Merge pull request #205980 from vhorne/fw-limit

update limits

Author: v-dirichards

includes/firewall-limits.md

@@ -5,7 +5,7 @@
  author: vhorne
  ms.service: firewall
  ms.topic: include
- ms.date: 07/25/2022
+ ms.date: 07/26/2022
  ms.author: victorh
  ms.custom: include file
 ---
@@ -14,8 +14,8 @@
 | --- | --- |
 | Data throughput |30 Gbps|
 |Rule limits|10,000 unique source/destinations in network and application rules <br><br> **Unique source/destinations in network** = sum of (unique source addresses * unique destination addresses for each rule)|
-|Total size of rules within a single Rule Collection Group| 2 MB|
-|Number of Rule Collection Groups in a firewall policy|100|
+|Total size of rules within a single Rule Collection Group| 1 MB for Firewall policies created before July 2022<br>2 MB for Firewall policies created after July 2022|
+|Number of Rule Collection Groups in a firewall policy|50 for Firewall policies created before July 2022<br>100 for Firewall policies created after July 2022|
 |Maximum DNAT rules|250 unique Destination IP, Destination port, and protocol<br><br> The DNAT limitation is due to the underlying platform. The maximum number of DNAT rules is 250. However, any additional public IP addresses reduce the number of the available DNAT rules. For example, two public IP addresses allow for 249 DNAT rules. If a rule's protocol is configured for both TCP and UDP, it counts as two rules.|
 |Minimum AzureFirewallSubnet size |/26|
 |Port range in network and application rules|1 - 65535|