Skip to content
Switch branches/tags
Go to file
Cannot retrieve contributors at this time

Network Security Dashboard for Microsoft Defender for Cloud

The new network security dashboard for Microsoft Defender for Cloud provides you a unified view and full visibility to your network security and networking resources in Azure. If you have been actively using Microsoft Defender for Cloud and Network Security features in Azure, this workbook is for you!

Our newly dashboard is based on Azure Resource Graph (ARG) queries and divided to several sections such as:

  • Overview: summary view of all your network security and networking resources for selected subscription(s)
  • Public IPs & exposed ports: ports exposed to the internet and mapping of public IPs to asset types
  • Network security services: DDoS protections plans, Azure Firewall and Firewall policies, Azure WAF policies and NSG views
  • Internal networking mapping: network interfaces, route tables, private links and virtual networks with DDoS protection status (including subnets and peering)
  • Gateway and VPN services: consolidated view of Bastion hosts, VPN gateways, Virtual Network Gateways and Express Route circuits
  • Traffic Manager details of all your traffic manager profiles
  • Virtual WAN (vWAN) consolidated view of Virtual WANs (inlcuding VPN/ExpressRoute/P2S)
  • Security Center recommendations: filtered view of all Microsoft Defender for Cloud network related recommendations including resource count, severity, and security control
  • PaaS Services: ipRules, virtualNetworkRules and privateEndpointConnections for Databases & Storage Accounts & Web Apps and Key Vaults

Informational options: using the action bars at the top section, select FAQ button to show the frequently asked questions. You can also see recent changes documented on the change log option.

Try it on the Azure Portal

To deploy the new workbook into your Microsoft Defender for Cloud console, click on Deploy to Azure for Azure Public cloud or Deploy to Azure Gov for government cloud. During the deployment, you must select a subscription and resource group to store the report. Once the workbook is successfully deployed, however to Security Center to start using it.

Dashboard demo

Upcoming changes

  • Application Security Group (ASG) and Outbound rules on Azure Firewall will be added in future.