graph TD;
  
  subgraph Overview
    B["Databricks Workspaces"]
    C["Cognitive Services Accounts"]
    D["Key Vaults"]
    E["Public IP Addresses"]
    F["Storage Accounts"]
    G["Network Security Groups (NSGs)"]
    H["Network Interfaces"]
    I["Private Endpoints"]
  end
  
  subgraph VirtualNetwork
    K["Virtual Network: virtualNetworks_wusm_prod_vnet_main_name"]
    M["Routing Rules"]
    N["NSG Configurations"]
  end
  
  subgraph Security
    P["Network Security Controls"]
    Q["Private Link Services"]
    R["Key Vault Access Policies"]
  end
  
  Overview --> VirtualNetwork
  Overview --> Security
  
  B -->|Allocated Subnets, NSGs| K
  B -->|Secure Communication| C
  
  C -->|Multiple Accounts| K
  C -->|Uses Subnets| K
  
  D -->|Secrets| F
  D -->|Configured ACLs| Q
  
  E -->|For Application Gateway| R
  E -->|Static IP, DDoS Protection| Overview
  
  F -->|Various Storage Types| Overview
  F -->|Storage with ACLs| K
  
  G -->|Control Access Rules| K
  G -->|NSGs for Databricks| B
  
  H -->|Tied to VMs and Clusters| B
  
  I -->|Enhanced secure connectivity| F
  I -->|No Public IP| Q
  
  K -->|Configured for services| Overview
  K -->|Segment Network Components| B
  
  M -->|Monitors Traffic| K
  N -->|Control Inbound/Outgoing Traffic| K
  
  P -->|Network ACLs deny by default| Overview
  Q -->|Block Public Routes| P
  
  R -->|Role-based Access| D
  R -->|Restricts Sensitive Info| Overview
  
  subgraph LoggingandMonitoring
    ZA["Log Analytics Workspaces"] 
  end
  
  ZA --> Overview