Azure Networking Overview
Learn how Azure provides a robust, scalable, and secure networking platform to connect your resources, on‑premises datacenters, and the internet.
A VNet is an isolated, private network in Azure that you can segment into subnets, assign IP ranges, and control traffic with Network Security Groups (NSGs).
- Address Space: CIDR blocks you define.
- Subnets: Divide the VNet for organization and security.
- Peering: Connect VNets across regions.
- Service Endpoints & Private Link: Secure access to Azure services.
Organize your resources and apply granular security policies.
| Subnet | CIDR | Purpose |
|---|---|---|
| Frontend | 10.0.0.0/24 | Public-facing web tier |
| Backend | 10.0.1.0/24 | Application tier |
| Database | 10.0.2.0/24 | SQL/NoSQL services |
Securely connect on‑premises networks to Azure.
- Site‑to‑Site VPN: IPsec tunnels over the internet.
- Point‑to‑Site VPN: Individual client connections.
- ExpressRoute: Dedicated private fiber with guaranteed bandwidth.
Distribute traffic across VMs, containers, and services.
| Type | Layer | Use Case |
|---|---|---|
| Azure Load Balancer | 4 (TCP/UDP) | High‑performance inbound/outbound traffic. |
| Application Gateway | 7 (HTTP/HTTPS) | Web application firewall, SSL termination. |
| Traffic Manager | DNS | Global traffic routing across regions. |
| Front Door | HTTP/2, TLS | Accelerated global web delivery. |
Protect your network with built‑in Azure security tools.
- Network Security Groups (NSG): Allow/Deny rules per subnet or NIC.
- Azure Firewall: Fully stateful firewall with threat intelligence.
- DDoS Protection: Standard tier for automatic mitigation.
- Azure Bastion: Secure RDP/SSH without public IP.
Quick Facts
- Regions: 65+ global regions
- Scalability: Supports millions of concurrent connections
- Compliance: ISO, SOC, HIPAA, GDPR
- Pricing: Pay‑as‑you‑go, no upfront costs
Getting Started
Create a VNet in minutes using the Azure portal, Azure CLI, or ARM templates.
Open Azure Portal