Update the virtual network

As part of supporting an Azure Admin in managing cloud resources, I assist with specific tasks rather than maintaining the entire infrastructure. Currently, one Linux virtual machine (VM) is under-utilised, and there’s a requirement to deploy a new Linux VM to act as an FTP server. To ensure effective monitoring of network traffic and resource utilization for the FTP server, the Azure Admin has requested the creation of a dedicated subnet. The existing subnet will remain unchanged to accommodate future VM deployments. Here is a simple guide to provisioning a subnet for a Linux FTP Server. To achieve this goal, you need to follow a step-by-step guide as stated bellow

Create a new subnet on an existing virtual network (vNet)

1. Login to Microsoft Azure at (Azure Portal)[https://portal.azure.com]
2. From the Azure portal home page, in the search box, enter virtual networks.
3. Select virtual networks under services.
4. Select the guided-project-vnet virtual network.
5. From the guided-project-vnet blade, under settings, select Subnets.
6. To add a subnet, select + Subnet.
7. For Subnet purpose leave it as Default.
8. For Name enter: ftpSubnet.
9. Leave the rest of the settings alone and select Add.
10. Select Home to return to the Azure portal home page.

Create a network security group

1. From the Azure portal home page, in the search box, enter virtual networks.
2. Select virtual networks under services.
3. Select Network security groups.
4. Select + Create.
5. Verify the subscription is correct.
6. Select the guided-project-rg resource group.
7. Enter ftpNSG for the network security group name.
8. Select Review + create.
9. Once the validation is complete, select Create.
10. Wait for the screen to refresh and display Your deployment is complete.
11. Select Go to resource.

Create an inbound security rule

1. Under settings, select Inbound security rules.
2. Select + Add.
3. Change the Destination port ranges from 8080 to 22.
4. Select TCP for the protocol.
5. Set the name to ftpInbound.
6. Select Add.
7. Select Home to return to the Azure portal home page.

Associate a network security group to a subnet

1. From the Azure portal home page, in the search box, enter virtual networks.
2. Select virtual networks under services.
3. Select the guided-project-vnet virtual network.
4. Under settings, select Subnets.
5. Select the ftpSubnet you created.
6. On the Edit subnet page, under the Security section heading, update the Network security group field to ftpNSG.
7. Select Save.

Conclusion
In Azure, planning network segmentation and resource allocation is essential for performance, monitoring, and security. By provisioning a new subnet for an FTP server, the infrastructure becomes more organised, maintainable, and transparent for administrators tracking usage metrics. This approach exemplifies proactive cloud governance and prepares the environment for future scaling needs.

Comments

[SKILL.SCH]

Nice