Azure Firewall DNS Proxy Failing to Resolve SCM Records in Private DNS Zones
I have a hub-and-spoke architecture in Azure where I'm using Azure Firewall in the hub as a DNS proxy. I have multiple private DNS zones configured in the hub and have established VNet links to my spoke networks. I've also added A records for my function…
How to connect Private endpoint created in Azure for Mongo DB (Atlas)
Hello Experts, This is regarding Mongo DB (Atlas) cluster & accessing over private endpoint. Atlas Mongo DB is not Azure native DB service, however it is one of the Partner resource. In Atlas portal, we can create private link service and using…
Keyvault Failover across regions with private endpoint
Hello, I've read this doc https://learn.microsoft.com/en-us/azure/key-vault/general/disaster-recovery-guidance#failover-across-regions and with reference to the bullet point in that doc, quote "If you're using private link to connect to your key…
Connectivity for transferring data from Azure to GCP
I am working on a project that involves securely transferring data from Microsoft Azure to Google Cloud Platform (GCP) without using the public internet. Could someone advise on which Azure and GCP products or services need to be configured for secure,…
How to Access Azure SQL on my Local Machine Using Point to Site VPN?
Hello! I looking for the help to access my Azure SQL more securely on my Local Machine Using Point to Site VPN. I configure the Point to Site VPN, Azure Private link, Private DNS Resolver but i'm not getting the exact answer. Please help me to teach the…
Create a separate private endpoint for the secondary instance of the storage service
Hello, in this doc: https://learn.microsoft.com/en-us/azure/storage/common/storage-private-endpoints?toc=%2Fazure%2Fstorage%2Fblobs%2Ftoc.json&bc=%2Fazure%2Fstorage%2Fblobs%2Fbreadcrumb%2Ftoc.json I can read the TIP "Create a separate…
Replicating AWS VPC-Endpoint Policies on Azure Private Endpoints for Granular Access Control
How can we replicate AWS' VPC-endpoint policy on Azure's private-endpoint for granular access control? This example illustrates restricting access to a specific S3 bucket. As far as I can tell, an Azure private endpoint can be associated with a…
Deployment Issue in Azure Web App
I am trying to make a Python Application Deployment in Azure Web App. The Deployment is within the private network, and we have VNet and Azure Private Endpoints in place to secure the application. But while deploying the application which was previously…
App Service VNet Integration not working with App Config Private Endpoint
I currently have this issue where after setting up a private endpoint for app configuration, disabling public network access, and then setting up VNet Integration on my app service I keep getting the following error. I have a VM on the virtual network…
Exploring Cost-Effective Solutions for Routing Traffic from an Azure Private Endpoint to a VPN Gateway
Greetings, I would appreciate assistance with a design to a solution I would like to implement on Azure. Below I summarized all the information and approaches I tried. Customer has a private endpoint on a "consumer" VNet, from which I…
Resolving DNS names for Azure private endpoint of another company, when using private endpoint ourselves
Hello, It was hard to find an explicit title for that issue... We got a DNS server hosted in Azure which serves as a relay/conditional forwarder for the private DNS zones we have in our Azure tenant. Following the Microsoft documentation for…
Azure private endpoints' effect on unity catalog
We have our unity catalog on an azure storage account with no private endpoint. We are considering creating a new endpoint for this storage account. Would this have any repercussions on the unity catalog's access and performance?
What is the relationship between private link and network security perimeter?
The new feature for isolating public access ingress and egress for paas resources called network security perimeter is currently in public preview. The docs are parked within the private link section of the docs. I am a bit confused what the relationship…
User can't see any resource types in the resource type list when trying to create a private endpoint
I have a user who is trying to setup a private endpoint on a keyvault in Azure. We have setup a development subscription and resource group for him to use. We don't want to give him full access to the subscription, but want him to be able to manage…
Azure Web App Failing
I have been trying to deploy my Flask APIs(standalone APIs without any frontend) on Azure Web App using GitHub actions. While I have been trying to deploy, though the deployment is successful, but however my application isnt running and I am getting…
Unable to connect to my storage account from a Virtual Machine Via private end point
I have a storage account with a SMB file share in it, the public access to the storage account is blocked, a private end point is linked to it, we have an existing private DNS zone, and a A record is created in that zone. The VNet where the PE is located…
Storing Azure Metrics in Private Storage Account Using Azure Automation
I want to retrieve metric values using Get-AzMetric in Azure Automation and store the daily updated values in an Azure Storage Account. However, the Storage Account is configured with a private link and can only be accessed through a specified network,…
Troubleshooting Bad Requests Through a Private Endpoint Connected to a Load Balancer
Greetings, I have a private endpoint connected to private link service composed of a load balancer with a VM in its backend. The load balancer's Inbound rule forwards TCP traffic on port 80 to the backend pool containing aforementioned VM. The backend…
Data Share support ADLS Gen2 with private endpoint
Do data share support ADLS Gen2 that is deployed with Private Endpoint?
How to connect Private-Link resource to a VPN gateway?
Greetings, I would appreciate assistance with a design to a solution I would like to implement on Azure. Below I summarized all the information and approaches I tried. Customer has a private endpoint on a "consumer" VNet, from which I…