Virtual Network Manager

Establish a Centralized VNet Group:

Ensure that three existing virtual networks, located in East US, West US, and Central US, are centrally managed as a single logical group within Virtual Network Manager.

Implement Hub and Spoke Network Connectivity:

Configure a hub and spoke network topology using Virtual Network Manager. Designate the virtual network in East US as the central hub, enabling direct communication between a spoke virtual network in Central US and the hub.

Enforce Baseline Security Rules Across Networks:

Utilize Virtual Network Manager to apply a consistent security policy that blocks inbound Remote Desktop Protocol (RDP) access to all virtual machines within the managed network group.

Implement Exception-Based Security Rules:

Within the centrally managed security policy, create an exception that allows inbound Secure Shell (SSH) access from a specific external IP address to the managed virtual networks, while the general RDP block remains in effect.

Manage Dynamic Network Group Membership and Configuration Propagation:

Observe how removing a virtual network (West US) from the central network group impacts the application and enforcement of the configured connectivity and security policies on the remaining virtual networks.