Professional Documents
Culture Documents
info@bitscape.com | www.bitscape.com
Canada | USA | India
Azure Firewall
Azure Application Gateway
Agenda Azure Front Door
Azure Sentinel
Azure Defender
Azure Firewall & Azure
Firewall Manager
Azure networking services
DDoS Protection
Virtual Network
Azure WAF
Virtual WAN
Azure Firewall
ExpressRoute
Azure Firewall Manager
VPN
Network Security Groups
DNS
Service Endpoints/Private Link
CDN
Network Watcher Front Door
ExpressRoute Monitor
Traffic Manager
Azure Monitor
Application Gateway
Virtual Network TAP Load Balancer
DDoS protection Web Application Firewall Azure Firewall Network Security Groups VNET Integration
DDOS protection tuned to Centralized inbound web Advanced Network and Distributed inbound & Restrict access to Azure service
your application traffic application protection Application threat protection outbound network (L3-L4) resources (PaaS) to only your
patterns from common exploits for Azure cloud traffic filtering on VM, Virtual Network using VNET
and vulnerabilities Infrastructure. Container or subnet Injection, Private Link and
Service Endpoints
Support Included in your Azure Support plan Per NVA vendor billing model
•DevOps optimized hierarchical Azure Firewall policies VNet VNet VNet VNet VNet VNet
•Global firewall policies authored by Central IT with local derived Secured Secured Secured
VNet vHub VNet VNet vHub VNet VNet vHub VNet
firewall policies for DevOps self-service for better agility
VNet VNet VNet VNet VNet VNet
Route
Azure Load
Balancer
Azure Key
Public or ILB Vault
Min capacity Max capacity
Public internet, internal, or both
Static VIP
Flexible backends
VMs, VMSS, AKS, Public IP, Cloud Services, ALB/ILB, On- AZ1 AZ2
Azure App Service
Premises
AKS VMSS
Security & SSL management On-Premises
WAF, SSL offload, SSL Re-encryption, SSL policy
Static VIP
Autoscaling
Grows and shrinks based on application traffic requirements
No need to overprovision or guess instance size
Min capacity Scale out at load
Reduce operating cost
Data
Zero Trust
policy Apps
Identities
Infrastructure
Context Control
Devices Network
Intelligent Security Dynamic Application Fast Global Content Cloud Native and
Protection Acceleration Delivery Network Developer Friendly
Quick and easy to deploy | Direct private access to resources | Simple transparent billing
Azure Front Door Use Cases
Commerce Platforms Retail and Commerce Mobile Applications Manufacturing / Electronics Media and Entertainment
Financial Services Mobile Apps and Services Commerce Services Retail and Commerce Gaming
Healthcare SaaS API Platforms Media Distribution Apps Enterprise File Delivery Telco
Enterprise LOB Apps IoT Services, Data ISV / Solution Providers Automotive and IoT Enterprise Video
Developer-Friendly APIs
Incoming Incoming
requests requests
Web App
Azure regions
Storage Account
Enhanced Reliability
Data Replication
Azure
Search
Cache Static Assets
Centralized CDN, Front Door, and DNS TXT record based validation
partner listings
Secure Origin management & load balancing
• Easily add, secure, and load balance your origins with one-click
integration with Azure Services like Private Link, Web Apps,
Storage, App Gateway, and more.
Utilize the existing logic you enjoy today in Classic AFD and CDN, plus the Apply and prioritize multiple rule sets to a
addition of Server variables & Regex capabilities. . path-based route.
Greater Performance
60+ Azure
regions
170+ Network
Edge sites
500+ network
partners
20k+ peering
connections
Cloud-Native and
Developer Friendly API
Iaas/PaaS Security
Azure Storage Azure Sentinel
Azure App Service Azure Defender / Security Center
Azure Private Link Azure Key Vault
AKS (via App Gateway)
Data Cost
Azure Log Analytics Azure Cost Management
Azure Monitor Azure Policy
©Microsoft Corporation
Powered by community + backed by Microsoft’s security experts
Azure
Visibility
Collect security data at cloud scale from any source
TAXII + MS Graph
Threat Indicators