Showing posts with label Network Security. Show all posts
Showing posts with label Network Security. Show all posts

Tuesday 18 August 2020

Network Security Group (NSG)

Network Security Group's allow you to filter network traffic to and from Azure resources in an Azure virtual network. An NSG can contain multiple inbound and outbound security rules that enable you to filter traffic to and from resources by source and destination IP address, port, and protocol.

Network Security Group

Network Security rule properties

A network security group can contain as many rules as you need, within Azure subscription limits. Each rule specifies the following properties:

Name - Unique name of the NSG.

Priority - A number between 100 and 4096. Rules are processed in priority order, with lower numbers processed before higher numbers.

Source or Destination - Individual IP address or IP address range, service tag, or application security group.

Protocol - TCP, UDP, or Any.

Direction - Whether the rule applies to inbound or outbound traffic.

Port Range - An individual port or range of ports.

Action - Allow or Deny.

Sunday 16 August 2020

Azure Firewall

A Firewall is a service that grants server access based on the originating IP address of each request. You create firewall rules that specify ranges of IP addresses. Only clients from these granted IP addresses will be allowed to access the server. Firewall rules also include specific network protocol and port information.

Azure Firewall is a managed, cloud-based, network security service that protects your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

You can create, enforce, and log, application and network connectivity policies across subscriptions, and virtual networks, centrally. Azure Firewall uses a static public IP address for your virtual network resources, which allows outside firewalls to identify traffic originating from your virtual network. The service is fully integrated with Azure Monitor for logging and analytics.

Azure Firewall

Azure Firewall provides many features, including:

  • Built-in high availability.
  • Unrestricted cloud scalability.
  • Inbound and outbound filtering rules.
  • Azure Monitor logging.