Secure Cloud for Azure IaaS Design Guide

  • This document illustrates the design and security aspects of an application hosted in Azure Cloud. Along with the design and security specifications, this document also delves into the details of implementation and validation steps for the proposed architecture.
  • This guide covers the following security controls.
  • Cisco Tetration
  • Cisco Advanced Malware Protection for Endpoints (AMP4E)
  • Cisco Stealthwatch Cloud (SWC)
  • Cisco Umbrella
  • Azure Network Security Groups (NSG)
  • Cisco Firepower Next-Generation Firewalls (NGFW)
  • Cisco Adaptive Security Appliance (ASA)
  • Cisco Defense Orchestrator (CDO)
  • Azure Web Application Firewall (WAF) and DDOS prevention
  • Radware Cloud Web Application Firewall (WAF) and DDOS prevention
  • Cisco Duo Beyond
  • Cisco SecureX threat response
  • For setting up the web application, we used the following Azure cloud components and services.
  • Azure Virtual Network (VNET) and Subnets
  • Azure Route Tables
  • Azure Database for MySQL
  • Azure Virtual Machine Scale Sets (VSS)
  • Azure Virtual Machines
  • Azure Internal Load balancer (Standard)
  • Azure External Load balancer (Standard)
  • Azure Storage Containers
  • Azure Resource Manager (ARM) Templates
  • Azure Private Links
  • Azure Front Doors (AFD)

Leave a Reply

Your email address will not be published. Required fields are marked *