Configure Multi-Scope Network Security
This Configure Multi-Scope Network Security IT Pro Challenge helps learners understand how to create a virtual network with subnets and a network security group in Azure. They will use Remote Desktop Protocol (RDP) to connect the virtual machines to subnets and enable web connectivity.
In this Configure Multi-Scope Network Security IT Pro Challenge, learners will learn about network security groups and remote desktop protocol and how to use each of them. They will learn how to use the Azure portal to create a virtual network with two subnets and a network security group. They will use a remote desktop client to create network security groups and connect the virtual machines to the subnets. The skills acquired in this virtual lab lay the groundwork for a career as a network or system administrator.
For this virtual lab, you are the system administrator, and the company wants to migrate its primary web applications from on-premises to Azure. To do this, you need to deploy an Azure virtual machine and provide a secure environment by specifying multi-scope network security.
This lab will make the learner comfortable with network security groups, the remote desktop client, and internet information services.
Create an Azure virtual network with subnets and a network security group
To begin, you need to login to the Azure portal and create a virtual network with subnets. Then you will create a Network Security Group (NSG) with an inbound rule and associate the NSG with a subnet.
Subnets (short for subnetworks) are divisions of IP networks into two or more smaller networks within the same IP range. An NSG contains rules that allow or deny network traffic (inbound and outbound) to/from an Azure resource.
Deploy Azure virtual machines to subnets
In this part of the lab, you will connect two Azure virtual machines to the subnets you created in the first step - one to the administrator and one to the web application.
Enable web connectivity using network security groups
Finally, you will use Remote Desktop Protocol (RDP) to connect to the virtual machines and create NSGs for the administrator and the web application. For the web application, you will use RDP to install Internet Information Services (IIS), which is a web server. You will also use RDP to test that you created the required NSG for each virtual machine.
By taking this lab, you will learn how to create an Azure virtual network with subnets and a network security group, deploy Azure virtual machines to those subnets, and enable web connectivity using network security groups.