Virtual Private Networks
Start course
1h 26m

This course covers how to implement Azure network security. Through a combination of both theory and practical demonstrations, you will learn how to create and configure a range of Azure services designed to keep your network secure.

This includes topics such as virtual network connectivity, the Azure Front Door Service, NSG configuration, Azure firewall configuration, and application security groups. The course then moves on to the configuration of remote access management via just-in-time access and tools that are used to configure baselines.

We’d love to get your feedback on this course, so please give it a rating when you’re finished. If you have any queries or suggestions, please contact us at

Learning Objectives

  • Understand how to implement Azure network security
  • Learn about the various Azure services and methodologies available to secure your network

Intended Audience

This course is intended for IT professionals who are interested in earning Azure certification and for those who work with Microsoft Azure on a daily basis.


To get the most from this course, you should have at least a basic understanding of Azure network resources such as virtual networks, Azure firewalls, and network security groups.



Virtual private networks, or VPNs, are used to extend physical on-prem networks into Azure. To be honest, you can even use VPNs to connect separate virtual networks. For example, you can use a site-to-site VPN to connect an Azure virtual network to a virtual network in AWS or even GCP.

For a more robust connection between an on-prem network and Azure, you can use what's called ExpressRoute instead of a VPN connection. Using ExpressRoute allows you to create a connection to an Azure virtual network without requiring your traffic to traverse the internet.

Whether you use a site-to-site VPN connection or ExpressRoute, you can allow all on-prem users to access Azure resources and services as if they're physically located on-prem within your own datacenter.

In cases where you need to allow an individual user to connect to an Azure virtual network, you can even use a point-to-site VPN. This type of VPN connection is similar to solutions like FortiGate or Cisco AnyConnect. In the next lesson, I'm going to show you how to connect two networks using a site-to-site VPN connection.

About the Author
Learning Paths

Tom is a 25+ year veteran of the IT industry, having worked in environments as large as 40k seats and as small as 50 seats. Throughout the course of a long an interesting career, he has built an in-depth skillset that spans numerous IT disciplines. Tom has designed and architected small, large, and global IT solutions.

In addition to the Cloud Platform and Infrastructure MCSE certification, Tom also carries several other Microsoft certifications. His ability to see things from a strategic perspective allows Tom to architect solutions that closely align with business needs.

In his spare time, Tom enjoys camping, fishing, and playing poker.