The networking services in Azure provide a variety of networking capabilities that can be used together or separately. Click any of the following key capabilities to learn more about them:
Connectivity services: Connect Azure resources and on-premises resources using any or a combination of these networking services in Azure – Virtual Network (VNet), Virtual WAN, ExpressRoute, VPN Gateway, Azure DNS, or Azure Bastion.
Application protection services Protect your applications using any or a combination of these networking services in Azure – DDoS protection, Firewall, Network Security Groups, Web Application Firewall, or Virtual Network Endpoints.
Application delivery services Deliver applications in the Azure network using any or a combination of these networking services in Azure – Content Delivery Network (CDN), Azure Front Door Service, Traffic Manager, Application Gateway, or Load Balancer.
Network monitoring – Monitor your network resources using any or a combination of these networking services in Azure – Network Watcher, ExpressRoute Monitor, Azure Monitor, or VNet Terminal Access Point (TAP).
Azure Virtual network
Azure Virtual Network (VNet) is the fundamental building block for your private network in Azure. You can use a VNets to:
Communicate between Azure resources: You can deploy VMs, and several other types of Azure resources to a virtual network, such as Azure App Service Environments, the Azure Kubernetes Service (AKS), and Azure Virtual Machine Scale Sets. To view a complete list of Azure resources that you can deploy into a virtual network, see Virtual network service integration.
Communicate between each other: You can connect virtual networks to each other, enabling resources in either virtual network to communicate with each other, using virtual network peering. The virtual networks you connect can be in the same, or different, Azure regions.
Communicate to the internet: All resources in a VNet can communicate outbound to the internet, by default. You can communicate inbound to a resource by assigning a public IP address or a public Load Balancer. You can also use Public IP addresses or public Load Balancer to manage your outbound connections.
Communicate with on-premises networks: You can connect your on-premises computers and networks to a virtual network using VPN Gateway or ExpressRoute.