如何保护云服务应用(Web和工作者角色)免受网络攻击? [英] How to secure Cloud Services app (Web and Worker Roles) from web attacks?
问题描述
是否存在使用外部攻击的Web /辅助角色保护云服务应用的最佳做法?似乎无法在云服务应用程序前使用Application Gateway Web应用程序防火墙,那么最佳做法是什么?
Microsoft是否继承了所有这些安全控制?我能想到的唯一安全措施是将Web和辅助角色部署到不同的子网中。非常感谢社区的任何建议!
您可以使用网络安全组来限制允许流量到达您的网站的人和位置云服务
https:// docs。 microsoft.com/en-us/azure/virtual-network/security-overview
A lso,请查看此doc以获取我们用于DDOS保护的云服务
https://docs.microsoft.com/en-us/azure/virtual-network/ddos-protection-overview
Are there any best practices for securing Cloud Services apps using web/worker roles from external attacks? It does not seem possible to use an Application Gateway Web Application Firewall in front of Cloud Services app, so what are the best practices? Does Microsoft inherit all of these security controls? The only security measure I can think of is deploying web and worker roles into separate subnets. Any suggestions from the community are much appreciated!
You can use Network Security Groups to limit who and where traffic is allowed to reach your cloud service
https://docs.microsoft.com/en-us/azure/virtual-network/security-overview
Also, check this doc for cloud service we have for DDOS protection
https://docs.microsoft.com/en-us/azure/virtual-network/ddos-protection-overview
这篇关于如何保护云服务应用(Web和工作者角色)免受网络攻击?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!