Implement and Manage Network Security Groups: Tim Warner
Implement and Manage Network Security Groups: Tim Warner
Tim Warner
Principal Author Evangelist, Pluralsight
@TechTrainerTim TechTrainerTim.com
Overview Implement application security groups
(ASGs)
Create and configure network security
groups (NSGs)
Validate NSG flow rules
Interpret NSG flow logs
Application Security Groups
Application Security Groups (ASGs)
timw.info/ydn
Our Lab Topology
Demo
Create ASG
Define NSG
Test connectivity
Validating and Monitoring NSGs
Network Watcher
IP flow verify
• Is an IP packet allowed or denied to or from an Azure VM?
NSG diagnostic
• Which NSG(s) does my Azure VM traverse as it makes an inbound or
outbound connection?
Effective security rules
• Precisely which NSGs affect my Azure VM, and what is the effective
access?
NSG flow logs
• How can I visualize and analyze ingress and egress through an NSG?
Traffic Analytics
• How can I gain insights from my flow logs in a visual way?
NSG Flow Logs
Protocol
Direction
Decision
State
Log Analytics
Traffic Analytics
Visualizations
Log search
timw.info/ige
Demo