In Azure, Network security group (NSG) contains a list of Access Control List (ACL) rules that allow or deny network traffic to your VM instances in a Virtual Network. NSGs can be associated with either subnets or individual VM instances within that subnet. When a NSG is associated with a subnet, the ACL rules apply to all the VM instances in that subnet. In addition, traffic to an individual VM can be restricted further by associating a NSG directly to that VM.
Till now creation of an independent new NSG (without the creation of a VM) was not possible through the new azure portal (portal.azure.com). But now you can create a new NSG in GUI mode from the new portal (http://portal.azure.com).
Here is the step by step procedure:
- Login to the Azure portal and click New ->Networking -> Network Security Group :
- Select Resource Manager as the Deployment model:
- On the details pane, provide the details including NSG Name, resource group and location:
- Once created, add the Inbound and/or Outbound security rules as required:
- The new NSG can now be bound to any new or existing VM or subnet as required: