In this video we are going to explore the idea of using Zenarmor as a secure web gateway (SWG) as part of a basic DIY Secure Access Service Edge (SASE) architecture. My previous videos have been focused mainly on on-prem/home deployments of the Zenarmor Next-Gen Firewall (NGFW), however, today we are going to step into the realm of cloud security, and explore how we can use Zenarmor SWG to filter and control cloud egress traffic.
For this demo, I have created SASE architecture using Azure, and we look at integrations, like using Zenarmor with Azure AD. To satisfy the zero trust aspects of the SASE architecture we will be using Zerotier to create a Zero Trust Access Networks (ZTNA), essentially a overlay network that our devices will use to communicate with each other. Zerotier has the ability to authenticate its users to the network using SSO, we will look how this is done by integrating Zerotier with Azure AD. Go grab a coffee and lets jump straight in and explore this potential enterprise use-case of Zenarmor SWG.
Links used in video:
https://www.sunnyvalley.io/zenarmor-secure-web-gateway
https://azure.microsoft.com/en-us/free/
https://docs.opnsense.org/manual/how-tos/installazure.html
https://github.com/dmauser/opnazure
https://learn.microsoft.com/en-us/azure/active-directory-domain-services/overview