Best practice rules for NAT Gateway
- Check for Optimal Idle Timeout Configuration
Ensure that your Azure NAT gateways are using appropriate TCP idle timeout configurations.
- Check for Private Network Integration
Ensure that your Azure NAT gateways are associated with private virtual network (VNet) subnets.
- Check for Public IP Association
Ensure that your Azure NAT gateways are using public IP addresses or public IP prefixes for outbound connectivity.
- Use Network Security Groups to Control Outbound SSH Traffic
Ensure that your Azure NAT gateways are using Network Security Groups (NSGs) for outbound SSH traffic control.