Let's look at some of the security best practices to secure your Azure network:
- Perimeter network architecture: It is recommended that you follow the same network design principle of the traditional world including designing a DMZ zone when designing your Azure virtual network.
- Network security groups: Always ensure that you have network security groups configured with minimum needed ports. It is advised that you avoid allowing public access to any management ports.
- Service endpoints: Many popular Azure PaaS Services such as Azure SQL Database, and storage accounts, allow configuring access from the specific virtual network only. It is recommended that you create service endpoints for such services and disable public ...