Share via

What is the relationship between private link and network security perimeter?

carlintveld 26 Reputation points
2024-11-29T08:38:54.2033333+00:00

The new feature for isolating public access ingress and egress for paas resources called network security perimeter is currently in public preview.

The docs are parked within the private link section of the docs. I am a bit confused what the relationship would be? I can only guess that below the covers the private link infrastructure is leveraged to enable connectivity between the paas resources in the network security perimeter.

For ingress into the perimeter I guess there is some firewall provisioned below the covers that leverages private link to connect with the paas resources.

For egress though I don't see much relationship with private link.

See the docs:

https://learn.microsoft.com/en-us/azure/private-link/network-security-perimeter-concepts

Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
526 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ganesh Patapati 2,435 Reputation points Microsoft Vendor
    2024-11-29T15:45:39.1133333+00:00

    Hi carlintveld

    Greetings!

    Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

    I wanted to follow up and see If you have reviewed the solution provided by Ki-lianK-7341 for resolving the issue.

    And also, you can consider this below for your reference:

    • Network Security Perimeter allows organizations to define a logical network isolation boundary for PaaS resources (for example, Azure Storage account and SQL Database server) that are deployed outside your organization’s virtual networks. It restricts public network access to PaaS resources outside of the perimeter; access can be exempted by using explicit access rules for public inbound and outbound.
    • The Network Security Perimeter is a new feature in Azure aimed at isolating public access ingress and egress for PaaS resources. This enhances security by reducing exposure to the public internet. Currently in public preview, the documentation for this feature is found within the Private Link section, which may cause some confusion about their relationship.

    User's image

    Refer: https://learn.microsoft.com/en-us/azure/private-link/network-security-perimeter-transition#moving-new-resources-into-network-security-perimeter

    Here how you will create in the Portal for PAAS Services.

    Refer: https://learn.microsoft.com/en-us/azure/private-link/create-network-security-perimeter-portal

    Hope this clarifies!

    If above is unclear and/or you are unsure about something add a comment below.

    Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

    Regards,

    Ganesh

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.