![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 43%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,104 questions
It is not recommended that you allow any address on the internet to access any port in your structure, there are automatic scans that will quickly identify the listening ports in your structure and you may suffer attacks.
nsg is already a great constraint, but I don't recommend keeping any any-any rules
There are some best practices articles for the solutions, below are some:
reference: https://learn.microsoft.com/en-us/azure/architecture/framework/services/networking/azure-firewall
Get in touch if you need more help with this issue.
--please don't forget to "[Accept the answer]" if the reply is helpful--