Network Security Groups are used in Azure to control what traffic is allowed or denied access to Virtual Machines. Depending on your configuration, you are required to update one or more Network Security Groups to allow published traffic to access the LoadMasters and backend Real Servers.

Note: The security group must contain a rule for 8443. This is the WUI port. If the LoadMaster is public-facing, other best practice, recommended ports if you are using the NAT rules mentioned in the earlier section that should be in the security group, are; 8441, 8442, 8444, 22, 221, 222, the Virtual Service ports (such as 443) and any other ports that are needed by the backend.
Note: For security purposes, these management ports can also be restricted to select source IP address to limit access.
Note: Do not block port 6973.