You're reading from Exam Ref AZ-104 Microsoft Azure Administrator Certification and Beyond A pragmatic guide to achieving the Azure administration certification

Product type Paperback

Published in Jul 2022

Publisher Packt

ISBN-13 9781801819541

Length 776 pages

Edition 2nd Edition

Tools

Azure

Concepts

Cloud Computing

Authors (2):

Donovan Kelly

Riaan Lowe

View More author details

Table of Contents (30) Chapters

Preface

1. Part 1: Managing Azure Identities and Governance FREE CHAPTER

2. Chapter 1: Managing Azure Active Directory Objects

3. Chapter 2: Managing Role-Based Access Control

4. Chapter 3: Creating and Managing Governance

5. Chapter 4: Managing Governance and Costs

6. Chapter 5: Practice Labs – Managing Azure Identities and Governance

7. Part 2: Implementing and Managing Storage

8. Chapter 6: Understanding and Managing Storage

9. Chapter 7: Securing Storage

10. Chapter 8: Practice Labs – Implementing and Managing Storage

11. Part 3: Deploying and Managing Azure Compute Resources

12. Chapter 9: Automating VM Deployments Using ARM Templates

13. Chapter 10: Configuring Virtual Machines

14. Chapter 11: Creating and Configuring Containers

15. Chapter 12: Creating and Configuring App Services

16. Chapter 13: Practice Labs – Deploying and Managing Azure Compute Resources

17. Part 4: Configuring and Managing Virtual Networking

18. Chapter 14: Implementing and Managing Virtual Networking

19. Chapter 15: Securing Access to Virtual Networks

20. Chapter 16: Configuring Load Balancing

21. Chapter 17: Integrating On-Premises Networks with Azure

22. Chapter 18: Monitoring and Troubleshooting Virtual Networking

23. Chapter 19: Practice Labs – Configuring and Managing Virtual Networking

24. Part 5: Monitoring and Backing Up Azure Resources

25. Chapter 20: Monitoring Resources with Azure Monitor

26. Chapter 21: Implementing Backup and Recovery Solutions

27. Chapter 22: Practice Labs – Monitoring and Backing Up Azure Resources

28. Chapter 23: Mockup Test Questions and Answers

29. Other Books You May Enjoy

Implementing Azure Firewall and Azure Bastion

Let's have a look at Azure Firewall and the different SKUs available and what functionality they have.

Azure Firewall

When it comes to networking in Azure, NSGs are considered a basic-level firewall. However, sometimes a solution is required that has more granular control over traffic, or a smarter firewall is required; this is where Azure Firewall shines.

Azure Firewall has three main policies that can be configured:

A Network Address Translation (NAT) rule: This is used to translate the firewall's public IP address and port to a private IP address and port.
A network rule: This has the same rules as NSGs but has additional features, such as being able to create rules based on fully qualified domain names (FQDNs) instead of just using IP addresses.
An application rule: This is used to allow or deny traffic based on specific applications that are based on FQDNs.

The following diagram shows how rules...