Microsoft has removed the Azure Private Link sheets as a way to create a private endpoint for a shared service.
This means that the service can be accessed through a local IP address both in Azure and from linked local networks through a VPN or Azure ExpressRoute, a dedicated connection to the Azure network.
Azure Private Link works on the assumption that you have configured an Azure Virtual Network (VNet), which has a private IP address space such as 10.1.0.0 / 24. You can now configure a private endpoint for a service such as Azure Storage or Azure SQL Database, which will be assigned an IP address, for example, 10.1.0.5.
This IP address will be accessible both in Azure VNet and in -premissions, if you have configured private or VPN connectivity to the Azure network.
Third-party service providers may also publish services through Azure Private Link by enabling the function in an Azure Standard load balancer against any service provided. This allows users to assign a private endpoint for that service.
The benefit of Private Link is that the data remains within the Microsoft network and its private network.
Azure already has a feature called VNet service endpoints. This allows you to protect Azure service resources so that they are only accessible from your virtual network and have the same benefit as Private Link in terms of data protection within the virtual network. However, a virtual network service endpoint is still a public IP. This also means that a service blocked with a virtual network service endpoint is not accessible from local networks, unless it also allows access through public IP addresses. It is more complex to configure and potentially less secure.
The Private Link service is currently in preliminary version and only works with five Azure regions in the USA. UU. SQL storage and databases appear to be the only supported services at this time, although the additional services promised include Cosmos DB, MySQL, PostgreSQL, MariaDB, Azure Application Service, Key Vault, Snowflake data storage and partner services. There are no immediate plans to support Office 365 services.
The price of a private endpoint is $ 0.005 per hour, with another $ 0.005 per GB of incoming or outgoing transferred data.
Microsoft states that "public preview is provided without a service level agreement and should not be used for production workloads," although Reg could see the function in our test configuration. of Azure and seemed to be offered without any warning message. ®
What follows after Netezza?