June 2021
Intermediate to advanced
208 pages
5h 17m
English
Security teams often require a deeper level of visibility than the standard traffic logs generated by Azure Firewall, NSGs, and other resources. This deeper level of visibility can take many forms, and native Azure resources can accomplish many of the requirements. Traffic inspection, or Deep Packet Inspection, refers to the ability to inspect the entire packet, rather than just the headers, of a request.
Traffic inspection generally has a few main components:
Decryption Encrypted traffic, such as TLS, must be decrypted before any inspection can be done.
Inspection Traffic can be inspected using several methodologies, including Intrusion Detection and Prevention Systems (IDPS), Data Loss Prevention ...