Azure Classroomnotes 24/Mar/2022

Network Security Groups (NSG)

  • This is used to filter the network traffic to and from Azure resources in Azure VNet.
  • NSG Contains Security rules that allow or deny the network traffic
  • NSG Can be attached to VM (network interface) or to a subnet.
  • If you have common rules required for multiple vms or subnets then you can use the same NSG
    Preview
  • Lets explore the NSG for the vm created in last session
    Preview
    Preview
  • Azure Has Default NSG Rules added
    Preview
  • Exercise: Create an NSG which allows http (TCP => 80) to every one and ssh (TCP => 22) to every one and (ICMP => *) to every once
    • The rules specified are inbound
    • Steps
      Preview
      Preview
      Preview
    • The default rules
    • allow the incoming traffic with in vnet and allows all the traffic from Azure Load Balancer, Any thing else is denied
    • allow the outgoing traffic with vpc and also to internet
    • Steps:
      Preview
      Preview
      Preview
  • Exercise 2: Create a network security group which
  • allows http and https (tcp 80,443) from anywhere
  • denies ssh from anywhere (tcp 22)
  • which doesnt allow VM to access 100.100.100.100 on any protocol
    Preview

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

About continuous learner

devops & cloud enthusiastic learner