Azure Backup for virtual machines behind an Azure Firewall | Blog

This weblog submit primarily talks about how Azure Firewall and Azure Backup might be leveraged to offer complete safety to your information. The previous protects your community, whereas the latter backs up your information to the cloud. Azure Firewall, now usually accessible, is a cloud-based community safety service that protects your Azure Digital Community sources. It’s a totally stateful firewall as a service with built-in excessive availability and unrestricted cloud scalability. With Azure Firewall you’ll be able to centrally create, implement, and log utility and community connectivity insurance policies throughout subscriptions and digital networks. It makes use of a static public IP tackle in your digital community sources, permitting outdoors firewalls to determine visitors originating out of your digital community.

Backup of Azure Digital Machines

In a typical state of affairs, you will have Azure Digital Machines (VMs) operating business-critical workloads behind an Azure Firewall. Whereas that is an efficient means of defending your VMs in opposition to community threats, you’d additionally wish to defend your information within the VMs utilizing Azure VM Backup. This additional reduces the percentages of being uncovered to a number of dangers. Azure Backup protects the info in your VMs by safely storing it in your Restoration Providers Vault. This includes transferring information out of your digital machine storage to the vault and requires a community. Nonetheless, all of this communication is carried out over the safe Azure spine community, without having for accessing your digital networks. You don’t have to open any ports, shortlist any IPs, or grant any accesses to Azure Backup in your Azure Firewall. Therefore, your backups will work below the improved safety of Azure Firewall with out having you carry out any actions out of your finish.

It’s price noting that this functionality extends to different safety measures that may lock a VM down below community restrictions, for instance, NSGs. Therefore, backup of Azure VMs will work seamlessly no matter community restrictions utilized at your finish to assist maintain your information inside chosen networks and with out having to carry out any further actions.

Backup of SQL Server operating inside an Azure VM (in preview)

Backup of SQL Servers operating inside an Azure VM requires the backup extension to speak with the Azure Backup service with the intention to add backup and emit monitoring data. This extension resides contained in the digital machine and requires community entry. Therefore, when backing up SQL Servers operating inside Azure VMs, you would want to allow the Azure Backup service to entry the workload. This can be a easy course of that makes positive the info is restricted to Azure Backup and maintains your required stage of safety.

All you might want to do is full the next steps:

1. Navigate to your Azure Firewall.

2. Go to Guidelines and choose the Utility rule assortment tab. Right here you’ll be able to create a brand new utility rule assortment, or edit current ones in case you may have created utility rule collections earlier than.

three. Create a rule with the next particulars in an current or new Utility Rule Assortment, below the FQDN tags part.

Subject

Worth

Precedence

Enter an applicable precedence for the rule.

Motion

Choose Enable from the dropdown.

Identify

Sort a reputation for the rule.

Supply Addresses

Enter * within the textual content field if you’d like this rule to be relevant to VMs in all subnets throughout the scope of the Firewall. Else, specify the specified IP or IP ranges.

FQDN Tags

Choose AzureBackup from the dropdown

The next is a pattern rule for permitting Azure Backup to guard your SQL Servers in Azure VMs.

Edit application rule collection screenshot

four. Choose Add to create the aforementioned rule.

As soon as the rule is created, you’ll be able to again up your databases contained in the Azure Digital Machine with none interruptions. All whereas ensuring it’s protected by Azure Firewall from any exterior threats. For extra on backing up your SQL Servers in Azure digital machines, please learn the weblog, “Azure Backup for SQL Server on Azure now in public preview.”

Azure Backup and Azure Firewall complement one another nicely to offer an entire safety to your sources and information in Azure. You don’t want any particular configurations or infrastructure to reap advantages of utilizing each companies collectively. Examine backing up Azure Digital Machines and backing up SQL servers inside Azure Digital Machines for extra particulars.

, , , , , ,

Leave a Reply

Your email address will not be published. Required fields are marked *