NSGs & Route Tables

IntermediateCloud & Azure
Azure NSGUDRAzure CLI

Objective

Configure Network Security Groups and User-Defined Routes.

Tools & Technologies

  • Azure NSG
  • UDR
  • Azure CLI

Key Commands

az network nsg create
az network nsg rule create --priority 100 --access Allow
az network route-table create
az network route-table route create

Lab Steps

01
NSG Creation

Create NSGs with allow and deny rules.

02
NSG Association

Associate NSGs with subnets and NICs.

03
Route Tables

Create UDRs to force-tunnel traffic through NVAs.

04
Effective Routes

Check effective routes and security rules on a NIC.

Challenges Encountered

  • NSG rule conflicts between subnet and NIC level NSGs
  • UDR for 0.0.0.0/0 can break Azure management traffic

Key Takeaways

  • NSG flow logs are essential for troubleshooting connectivity
  • Effective Security Rules view shows the final combined rule set