Welcome to Azure Networking

Azure Networking provides a comprehensive suite of networking capabilities to build robust, scalable, and secure cloud solutions. This documentation guides you through the fundamental concepts, services, and best practices for designing and managing your Azure network.

Core Networking Services

Azure offers a wide range of services to facilitate your networking needs:

Virtual Network (VNet)

Azure Virtual Network is the fundamental building block for your private network in Azure. It enables you to securely create and manage your own IP address space, define subnets, and control traffic flow.

• VNet Overview
• Subnet Management
• IP Address Spaces

Load Balancer

Azure Load Balancer distributes incoming traffic across multiple virtual machines or services, ensuring high availability and scalability for your applications. It operates at Layer 4 (TCP/UDP).

• Load Balancer Overview
• Load Balancer Types

Application Gateway

Azure Application Gateway is a web traffic load balancer that enables you to manage traffic to your web applications. It provides features like SSL termination, cookie-based session affinity, and Web Application Firewall (WAF).

• Application Gateway Overview
• Web Application Firewall

VPN Gateway

Connect your on-premises networks to Azure or connect Azure VNets together securely using Azure VPN Gateway. Supports Site-to-Site, Point-to-Site, and VNet-to-VNet connectivity.

• VPN Gateway Overview
• Site-to-Site VPN

Advanced Networking Concepts

Network Security Groups (NSGs)

Network Security Groups act as a basic firewall for your Azure resources. You can configure inbound and outbound security rules to filter traffic to and from Azure resources in an Azure Virtual Network.

Example NSG Rule:

{
  "name": "AllowSSH",
  "properties": {
    "priority": 100,
    "protocol": "Tcp",
    "access": "Allow",
    "direction": "Inbound",
    "sourceAddressPrefix": "*",
    "sourcePortRange": "*",
    "destinationAddressPrefix": "*",
    "destinationPortRange": "22"
  }
}
                

• Network Security Groups

Azure Firewall

Azure Firewall is a cloud-native network security service that protects your Azure Virtual Network resources. It is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It offers intelligent threat protection with built-in high availability and unrestricted cloud scalability.

• Azure Firewall

DNS

Azure DNS provides a reliable and secure DNS service to host your domain names in Azure. You can manage DNS records for your domains using the Azure portal, Azure CLI, or Azure PowerShell.

• Azure DNS

Learn More

• Networking Best Practices
• Reference Architectures
• Tutorials and Quickstarts