You're reading from Implementing Microsoft Azure Architect Technologies: AZ-303 Exam Prep and Beyond A guide to preparing for the AZ-303 Microsoft Azure Architect Technologies certification exam

Product type Paperback

Published in Dec 2020

Publisher Packt

ISBN-13 9781800568570

Length 548 pages

Edition 2nd Edition

Languages

SQL

Tools

Azure

Concepts

Cloud Computing

Authors (3):

Sjoukje Zaal

Brett Hargreaves

View More author details

Table of Contents (25) Chapters

Preface

1. Section 1: Implement and Monitor Azure Infrastructure

2. Chapter 1: Implementing Cloud Infrastructure Monitoring FREE CHAPTER

3. Chapter 2: Creating and Configuring Storage Accounts

4. Chapter 3: Implementing and Managing Virtual Machines

5. Chapter 4: Implementing and Managing Virtual Networking

6. Chapter 5: Creating Connectivity between Virtual Networks

7. Chapter 6: Managing Azure Active Directory (Azure AD)

8. Chapter 7: Implementing Multi-Factor Authentication (MFA)

9. Chapter 8: Implementing and Managing Hybrid Identities

10. Section 2: Implement Management and Security Solutions

11. Chapter 9: Managing Workloads in Azure

12. Chapter 10: Implementing Load Balancing and Networking Security

13. Chapter 11: Implementing Azure Governance Solutions

14. Section 3: Implement Solutions for Apps

15. Chapter 12: Creating Web Apps Using PaaS and Serverless

16. Chapter 13: Designing and Developing Apps for Containers

17. Chapter 14: Implementing Authentication

18. Section 4: Implement and Manage Data Platforms

19. Chapter 15: Developing Solutions that Use Cosmos DB Storage

20. Chapter 16: Developing Solutions that Use a Relational Database

21. Chapter 17: Mock Exam Questions

22. Chapter 18: Mock Exam Answers

23. Assessments

24. Other Books You May Enjoy

Leave a review - let other readers know what you think

Implementing network security and application security groups

Some Azure components, such as VMs and application gateways, must be connected to a subnet within a VNet. When you create subnets, you can optionally attach an NSG, which can be used to control what ports can route into it.

When we created our VMs, an NSG is created and attached to the subnet they are in, and when we chose the option to open RDP and HTTP, these ports were added to that NSG.

To see the details of the NSG that was created, in the Azure portal, in the search box, type and then select Network Security Groups.

You will see a list of groups; one should be called PacktVM1-nsg and be in the PacktLBResourceGroup. Click on the NSG, as in the following example:

Figure 10.11 – Example NSG ruleset

In the preceding screenshot, we can see five inbound rules and three outbound. The top two inbound rules highlighted in red were created when we created our VM when we specified allowing...