Azure Network Security Implementation Project
Duration: Apr 2025 - Apr 2025
Project Overview: This project involved the design and implementation of a secure, highly segmented virtual network in Azure, utilizing a range of Azure-native security services to ensure a robust, secure environment for virtual machines (VMs). The goal was to create a secure and isolated network architecture while enabling RDP access to VMs without exposing them to the public internet.
Key Achievements:
- Designed and deployed a hub-and-spoke network topology, leveraging Azure Firewall, Bastion, and Network Security Groups (NSGs) to enforce security.
- Configured Azure Firewall with forced tunnelling, ensuring secure traffic management between subnets.
- Implemented Azure Bastion for secure RDP access to VMs.
- Integrated NSG Flow Logs with Azure Log Analytics for real-time traffic visibility and monitoring.
- Restricted access to firewall public IPs, ensuring only specific administrators had access.
- Enabled diagnostics and flow logs for real-time visibility into network activity.
Skills:
Azure Firewall · Azure Bastion · Network Security Groups (NSG) · NSG Flow Logs · Azure Virtual Network · Azure Diagnostics