I am trying to isolate a VM for testing purposes by associating the NIC for the VM with a NSG and putting a block all in place for outbound traffic. Once I verify the rule is in place, I login via RDP and check to make sure that I cannot in fact reach any external resources. It would seem that I am mostly blocked, however, I can still run an nslookup and resolve IPs. If I have a NIC associated with an NSG and have that set to block * to *, shouldn't DNS resolution be blocked as well?
Thanks!