Security Control: Protecting Internet-Facing Virtual Machines with Network Security Groups

Protecting Internet-Facing Virtual Machines with Network Security Groups

Question

Which Security Control includes the recommendation “Internet-facing virtual machines should be protected with network security groups”?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer: D.

‘mumps emaan 661011 ig
oon
cr

ood xs +

romuo>ss20e pono au uf yim oro 9g FN Supe emeko suOd MOU
© spear mate psop a9 Pees Syed DUNO
<6 hunove own am posi! 9 rE SUNPE eu BUD PUSH

‘ood western ames

Reference:

The security control that includes the recommendation "Internet-facing virtual machines should be protected with network security groups" is D. Secure management ports.

Network Security Groups (NSGs) are a network-level Azure resource that allows you to filter network traffic to and from resources in a Virtual Network. NSGs act as a basic firewall and can be applied to subnets or individual NICs (Network Interface Cards) attached to Azure virtual machines.

When it comes to protecting internet-facing virtual machines, it is essential to use NSGs to restrict traffic to only the necessary ports and protocols. An internet-facing virtual machine is exposed to the internet, which increases the risk of cyber-attacks. As a result, it is critical to restrict traffic to only the necessary ports and protocols.

In this case, secure management ports is the security control that includes the recommendation of using NSGs to protect internet-facing virtual machines. By securing the management ports, you are also securing the virtual machine, as management ports allow access to the virtual machine's operating system, applications, and other resources.

Therefore, the correct answer is D. Secure management ports.