Network Security Group
Learn about network security group in this lesson.
What is a Network security group?
A network security group (NSG) is crucial to the network security infrastructure in cloud computing. This virtual firewall manages and filters incoming and outgoing traffic to and from resources inside a network or subnet in a cloud infrastructure.
Platforms like Google Cloud Platform (GCP), Amazon Web Services (AWS), and Microsoft Azure frequently employ NSGs.
The main objective of an NSG is to enable administrators to design and enforce network access rules to safeguard their cloud resources against unauthorized access, malware, and other security risks. The foundations of these regulations are often the source, destination, ports, and protocols. A Network Security Group (NSG) is a fundamental component of network security in Microsoft Azure. It is essentially a virtual firewall that controls inbound and outbound network traffic to and from Azure resources, such as virtual machines, subnets, and network interfaces.
An NSG allows you to create a set of security rules that define what traffic is allowed or denied based on various criteria, such as source IP address, destination IP address, port number, and protocol. These rules are evaluated in the order they are defined, and the first matching rule determines whether the traffic is allowed or blocked.
How network security group works
Inbound security rules: These rules control the incoming traffic to Azure resources. For example, you can create a rule to allow SSH (Secure Shell) traffic on port 22 from a specific IP address range.
Outbound security rules: These rules control the outgoing traffic from Azure resources. For instance, you can set up a rule to allow HTTP traffic on port 80 ...