What is key difference between Azure Firewall and Network Security Group in Azure Portal ?

The key difference is their scope and function. Azure Firewall operates at the application layer and provides centralized network security for outbound and inbound traffic, while Network Security Groups (NSGs) operate at the network layer and control traffic flow to and from Azure resources based on rules.

What is purpose of Azure Bastion ?

Azure Bastion is a secure gateway that lets you access your Azure virtual machines (VMs) from the Azure portal without exposing them to the public internet. It provides browser-based RDP and SSH access, enhancing security by eliminating the need for public IP addresses or VPNs.

What is use case of Azure DDos Protection ?

Azure DDoS Protection safeguards your Azure-hosted services from Distributed Denial of Service (DDoS) attacks by monitoring traffic and automatically mitigating malicious activity. It's ideal for ensuring the availability and performance of your applications and services, protecting them from downtime and disruptions caused by DDoS attacks.

How to establish connection between Private VM to Bastion step by step in Azure Portal ?

Deploy Bastion: Set up Azure Bastion in the same place where your private VM is.

Adjust Security Settings: Make sure the security settings (like NSG) for your VM's area allow connections from Bastion.

Connect on Azure Portal: Find your VM in the Azure Portal and click "Connect using Bastion."

Log In: Enter your username and password to securely access your private VM via Azure Bastion.

What is key difference between Azure Firewall and Azure Bastion in Azure Portal ?

The key difference between Azure Firewall and Azure Bastion is their purpose and function. Azure Firewall is a network security service that filters traffic at the network level, while Azure Bastion provides secure RDP and SSH access to Azure VMs directly through the Azure portal, without exposing them to the public internet.