Cloud Security & Operations Learning Center

Learn the Fundamentals

Monitoring and Troubleshooting AWS Cloud

Amazon CloudWatch allows the collection and tracking of various metrics. A metric is a time-ordered set of data points that are made available to CloudWatch by other AWS service.

What is Site to Cloud VPN?

A common solution to most security threats is a Virtual Private Network (VPN). A VPN allows a user to access the internal resources of the company from an external network such as the Internet. This allows users to access internal resources in a secure manner.

What Do Egress and Ingress Mean in the Cloud?

Egress in the world of networking implies traffic that exits an entity or a network boundary, while Ingress is traffic that enters the boundary of a network. While in service provider types of the network this is pretty clear, in the case of datacenter or cloud it is slightly different.

What is the AWS Console?

For quite a long time, system/application scientists have looked for various ways to create and deploy sophisticated infrastructure or applications that provide highly scalable, all-around web-based services. And to a large extent, they have been able to succeed with the creation of web-based services like Amazon Web Services and Microsoft Azure.

Why Use Egress Filtering?

Outbound or Egress controls prevent unauthorized access by internal resources to possibly dangerous endpoints out there in the wilds of the internet. A properly secured VPC will ensure that only trusted sites are accessible, thus reducing the risk of your digital services interacting with any unsavory entities as well as preventing any possible infections that may have occurred within your servers from dialing home to their command-and-control locations.

What does AWS Networking Services Offer?

AWS is an acronym for Amazon Web Services. It is a cloud computing empire that leverages cloud-based services to provide flexible virtual infrastructure for its customers.

What are Security Groups in AWS?

A security group is an AWS firewall solution that performs one primary function: to filter incoming and outgoing traffic from an EC2 instance. It accomplishes this filtering function at the TCP and IP layers, via their respective ports, and source/destination IP addresses.

Network Security in Azure

Azure is a networking infrastructure powered by Microsoft to provide a secure connection for virtual machines (VMs) between shared environments and to be the secure link between the datacenter and the cloud. Azure is an on-demand network designed to improve business performance for its users. It supports thousands of customers across 80 global data centers. As customers using active virtual machines (VMs) continues to increase, ensuring the security and confidentiality of network traffic information is paramount.

What is Azure Firewall?

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

How do I create Network Security Groups in Azure?

A network security group (NSG) in Azure is the way to activate a rule or access control list (ACL), which will allow or deny network traffic to your virtual machine instances in a virtual network. NSGs can be associated with subnets or individual virtual machine instances within that subnet. When an NSG is associated with a subnet, the ACL rules apply to all Virtual Machine instances of that subnet. In addition, you can further restrict traffic to an individual virtual machine by associating an NSG directly to that virtual machine.

What is Azure Network Security Group?

Billions of bits of data are traversing across the internet every second, and this has made the internet a global village for easy access and quick transfer of information over several interconnected networks (both public and private network).

What is Azure Express Route?

Express route allows a private connection between the local network and the Microsoft cloud. Using express route organizations/users can connect to several Microsoft cloud services (cloud products e.g. Microsoft dynamics 365, Microsoft Azure and Office 365).

What is Azure Network Virtual Appliance (NVA)?

Azure network virtual appliance is used in the Azure application to enhance high availability. It is used as an advanced level of control over traffic flows, such as when building a demilitarized zone (DMZ) in the cloud.

How do I configure Azure VNET to VNET

Imagine if you could connect and monitor multiple devices or perhaps computers from a central machine; it makes the connection to those devices easier and smarter than if you had to be present at every location. Well, that’s literally what the Azure Virtual Network is capable of doing and if you are working with Azure and you know how impactful Microsoft Azure can be, you will be interested in maximally utilizing Azure networks to meet your networking/cloud goals.