Design Case Study on Azure Firewall Manager – MyKloud

Let’s take an example of an Organization which has Multiple Business units. Central IT team of the Organization runs its applications in Azure. Each Business unit runs its own Applications in Azure Cloud. Each Business Unit has its own Multiple Virtual Networks for testing and deployment of Applications. The Organization also has on-premises Datacentre.

Central Security IT Team has a requirement that each Business Unit Applications must be protected by a separate Azure Firewall Premium Tier and all inbound and outbound internet must go through Azure Firewall. Central Security Team has an additional requirement that IDPS must be enabled in Alert mode on Azure Firewall Premium.

Note: IDPS Stands for Intrusion Detection and Prevention system.

Other Requirement of Central Security IT team includes that inbound Internet from specific IP Addresses is denied. Additionally for outbound internet access, access to specific URLs is denied.

Each Business unit has different requirements for Inbound and outbound internet access and access to on-premises resources.

Suggest a solution which satisfies the above requirement.

To know more about Azure Firewall and Azure Firewall Manager refer to book  Exam AZ-500 Study & Lab Guide Part 2: Microsoft Certified Azure Security Engineer Associate.

The Book is now available on Amazon.

Most Popular Blog Post

Virtual Networks

Blog Posts on Exam Guide’s and Exam Experience

Blog Post on Exam AZ-104 Study & Lab Guide
Blog Post on Exam AZ-500 Study & Lab Guide
Blog Post on Exam AZ-300 & AZ-301 Study & Lab Guide
Blog Post on 70-535 Exam Experience
Blog Post on MCSA Cloud Infrastructure Lab Guide 70-534 Exam

Blog Posts on Design Case Studies

Design Case Study on Azure Firewall Manager
Mini Design Example – Layer 4 Load Balancer or Layer 7 Load Balancer
Mini Design Scenario Excerpt: Identity Management
Business Continuity Solution for Web/App tier and Database Tier
Design Case Study – Secure Remote Access to on-premises Application
Azure AD B2B Collaboration User licensing Case Study

Blog Posts on Governance, Compliance & Security

Implementing IT Governance in Azure Cloud
Data Compliance in Cloud with Immutable Blob Storage
Azure VM Disk Encryption using Encryption at Host option
Design Case Study on Azure Firewall Manager
Multi-Factor Authentication using MS Authenticator App for IOS
Deploy Secure HDInsight Cluster

Introductory Blog Posts on Cloud Computing

Introduction to Cloud Computing
Introduction to Containers
Introduction to Virtual Private Network (VPN)

Blog Posts on Azure Virtual Machine HA, DR, Scalability and Costing

Azure Availability Zones (AZ)
Availability Set (AS)
Virtual Machine Scale Set (VMSS)
How to Save on Virtual Machine Compute Cost

Blog Post on Azure Virtual Networks

Virtual Networks
Azure Virtual Network Peering

Other Popular Blog Posts

Identity options with Azure Active Directory (Azure AD)
Azure Service Bus Relay
Containers
Hands on Lab – Video on Demand (VOD) Streaming using Azure Media Services (AMS)
Azure AD Application Proxy
Azure Active Directory Privileged Identity Management
Azure IoT Edge

Blog Posts and links on Azure AZ Series Certifications and Exams

Amazon Link for Exam AZ-104 Study & Lab Guide
Amazon Link for Azure Study & Lab Guide for Beginners
Amazon Link for Exam AZ-500 Study & Lab Guide Part 1
Amazon Link for Exam AZ-500 Study & Lab Guide Part 2
Amazon Link for Exam AZ-500 Study & Lab Guide Part 3
Amazon Link for Exam AZ-300 & AZ-301 Study & Lab Guide Part 2
Amazon Link for Exam AZ-300 & AZ-301 Study & Lab Guide Part 1
Amazon link for Exam AZ-103 Study & Lab Guide
Sample Chapter from AZ-300 & AZ-301 Study and Lab Guide Part 2
Sample Chapter from AZ-300 & AZ-301 Study and Lab Guide Part 1
TOC and Sample Chapter from AZ-103 Study and Lab Guide
NEW AZURE CERTIFICATIONS & BOOKS