Azure Security Tutorial #3 – Create Network Security Group

Continue from my previous Blog

In this tutorial , you will learn about Create a Network Security Group and assign the NSG to the subnet in your Virtual Network.

You can control network traffic. Following figure shows how network traffic flows. For example, if a traffic flow into a Virtual Machie, the traffic will go thru Subnet level NSG and then NIC level NSG. And an out bound traffic will go thru NIC level NSG and then subnet level NSG.


Create Network Security Group

Click ‘+ New’ and search Network Security Group.

Click ‘Create’ button.

Name to your new Network Security Group and create.

Type name and select your resource group. And please check ‘Pin to dashboard’.

Name Subscription Resource Group Location
dev-wus-nsg yoursubscription workshop-### West US

Add Inbound Security Rules

Click Network Security Group.

Click ‘Inbound Security rules’ to add new rule.

Click ‘Add’.

Click ‘Basic’.

Select ‘RDP’ from the Service list.

Click ‘OK’.

One update is done, you’ll see port 3389 TCP is added as RDP on the inbound security rule.

Apply the rules to subnet

Open your Network Security Group.

Click ‘Subnets’ and then click ‘+ Associate’.

Click ‘1.Virtual Network’ and then choose your virtual network.

Choose ‘Default’ subnet.

Confirm your selected options and click ‘OK’ to continue.

Once update is done, you’ll see the subnet on the associated list.


In next tutorial , you will learn about Create Key Vault.

By Eng Soon Cheah, Microsoft MVP.

Leave a Reply

Your email address will not be published. Required fields are marked *