Summary and resources
In this module, you learned about network security groups (NSGs) in Azure. NSGs are used to limit network traffic to resources in your virtual network by containing a list of security rules. You can associate NSGs with subnets or network interfaces and define rules to control inbound and outbound traffic.
You also learned how NSG rules are evaluated and processed. Lastly, you learned how application security groups, allow for grouping virtual machines based on workload.
The main takeaways from this module are:
Network security groups are essential for controlling network traffic in Azure virtual networks.
NSG rules are evaluated and processed based on priority and can be created for subnets and network interfaces.
Effective NSG rules can be achieved by considering rule precedence, intra-subnet traffic, and managing rule priority.
Application security groups provide an application-centric view of infrastructure and simplify rule management.
Learn more
Read about network security groups. This article describes the properties of a network security group rule, the default security rules that are applied, and the rule properties that you can modify.
Filter network traffic with network security groups in the Azure portal. Learn how to create a network security group and an application security group.
Create, change, or delete a network security group. Learn how to work with network and application security groups.
Application security groups. Learn about application security groups and traffic control with rules.
Learn more with self-paced training
Secure and isolate access to Azure resources with network security groups and service endpoints (sandbox). Learn how to secure your virtual machines and Azure services from unauthorized network access.
Filter network traffic with a network security group using the Azure portal. Learn how to create, configure, and apply NSGs for improved network security.