A network security group is associated with a virtual network and contains a set of security rules. A security rule defines the policies of the inbound and outbound traffic of subnets or virtual machines. Using the network security group, a user can define whether the inbound traffic is allowed to access the resources of a group, and also whether the outbound traffic is allowed. A security rule contains the following:
- A priority (this can range from 100 to 4096; the lower the number, the higher the priority)
- A source or destination (a CIDR block, a group of IPs, or another security group)
- A protocol (TCP/UDP/ICMP)
- A direction (inbound/outbound)
- A port range
- An action (allow/deny)
Let's create a network security ...