Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Microsoft

Implement network security in Azure

Microsoft via Microsoft Learn

Overview

  • Module 1: Learn about the Azure services you can use to help ensure that your network is safe, secure, and trusted. Prepare for AZ-900.
  • After completing this module, you'll be able to:

    • Identify the layers that make up a defense in depth strategy.
    • Explain how Azure Firewall enables you to control what traffic is allowed on the network.
    • Configure network security groups to filter network traffic to and from Azure resources within a Microsoft Azure virtual network.
    • Explain how Azure DDoS Protection helps protect your Azure resources from DDoS attacks.
  • Module 2: Learn how to connect your local on-premises networks into Azure using virtual networks, VPN gateways, and Azure ExpressRoute.
  • In this module, you will:

    • Create an Azure Virtual Network
    • Create an Azure VPN Gateway
    • Learn to work with Azure ExpressRoute
  • Module 3: Find out how Azure network security groups and service endpoints help you secure your virtual machines and Azure services from unauthorized network access.
  • In this module, you will:

    • Identify the capabilities and features of network security groups.
    • Identify the capabilities and features of virtual network service endpoints.
    • Use network security groups to restrict network connectivity.
    • Use virtual network service endpoints to control network traffic to and from Azure services.
  • Module 4: Secure the traffic from your users all the way to your web servers by enabling TLS encryption on Application Gateway.
  • In this module, you will:

    • Implement TLS encryption between your users and Application Gateway
    • Implement TLS encryption between Application Gateway and your web servers
  • Module 5: Learn how to investigate and diagnose problems in your Azure virtual networks by using Network Watcher and other tools.
  • In this module, you will:

    • Identify the tools available to manage and troubleshoot network connectivity in Azure
    • Select the proper tool to manage and troubleshoot network connectivity for various use cases

Syllabus

  • Module 1: Secure network connectivity on Azure
    • Introduction
    • What is defense in depth?
    • Protect virtual networks by using Azure Firewall
    • Protect from DDoS attacks by using Azure DDoS Protection
    • Filter network traffic by using network security groups
    • Exercise - Configure network access to a VM by using a network security group
    • Combine Azure services to create a complete network security solution
    • Knowledge check
    • Summary
  • Module 2: Configure the network for your virtual machines
    • Introduction
    • Explore Azure virtual networking
    • Exercise - Create an Azure virtual network
    • Explore Azure VPN Gateway
    • Exercise - Create an Azure VPN gateway
    • Explore Azure ExpressRoute
    • Knowledge check
    • Summary
  • Module 3: Secure and isolate access to Azure resources by using network security groups and service endpoints
    • Introduction
    • Use network security groups to control network access
    • Exercise - Create and manage network security groups
    • Secure network access to PaaS services with virtual network service endpoints
    • Exercise - Restrict access to Azure Storage by using service endpoints
    • Summary
  • Module 4: Encrypt network traffic end to end with Azure Application Gateway
    • Introduction
    • Application Gateway and encryption
    • Configure back-end pools for encryption
    • Exercise - Configure back-end pools for encryption
    • Configure an Application Gateway listener for encryption
    • Exercise - Configure an Application Gateway listener for encryption
    • Summary
  • Module 5: Monitor and troubleshoot your end-to-end Azure network infrastructure by using network monitoring tools
    • Introduction
    • Troubleshoot a network by using Network Watcher monitoring and diagnostic tools
    • Exercise - Troubleshoot a network by using Network Watcher monitoring and diagnostic tools
    • Troubleshoot a network by using Network Watcher metrics and logs
    • Exercise - Troubleshoot a network by using Network Watcher metrics and logs
    • Summary

Reviews

Start your review of Implement network security in Azure

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.