Networking Flashcards
What is a service endpoint?
Virtual Network (VNet) service endpoint creates a direct connection of your service to a VNet. Endpoints allow you to secure your critical Azure service resources to only your virtual networks. Without it, the traffic between your services and the VNet can travel over a public network. By using it, traffic from your VNet to the Azure service always remains on the Microsoft Azure backbone network.
How do you use service endpoints?
You need to allow service endpoints in your VNet and select allowed types of resources (e.g. Microsoft.KeyVault).
How do you create your own application group that can be used in NSG similarly as a Service Tag?
Application Security Groups. ASGs introduce the ability to deploy multiple applications within the same subnet, and isolate traffic based on ASGs.
