Most cost effective way to secure 2 VMs running a webserver

Question

Hey,

I am conducting a project where I will have 2 VMs for redundancy, they will have the same configuration.

The VMs will essentially be running docker, portainer and OpenCTI.

What is the best way to secure these, there seems to be so many different ways when looking online. I am more interested in the network side as I will be able to patch the VMs and keep them up to date.

Admin users will be logging into the webservers via port 8080 and will be using SSH to gain access to the Linux VMs

Answer 1

Hi @Cloudsec you can use Azure Application Gateway with a private IP address and load balancing to provide secure access to your VMs. This setup allows you to expose your applications internally within your Azure virtual network without exposing them to the public internet You can use the architecture of WordPress as a reference for your scenario. The provides insights into infrastructure and security structure that you can adapt to your implementation with Azure Application Gateway and Docker VMs. Here's the link: Wordpress IaaS Example Scenario.

https://learn.microsoft.com/en-us/azure/architecture/example-scenario/infrastructure/wordpress-iaas

References: https://learn.microsoft.com/en-us/azure/architecture/

Get in touch if you need more help with this issue.

--please don't forget to "[Accept the answer]" if the reply is helpful--