Azure Networking (2) : Private Endpoints

Azure Networking (2) : Private Endpoints

Mohamed-Lamin Taleb Mohamed-Lamin Taleb

Mohamed-Lamin Taleb

Microsoft Power Platform & SharePoint

发布日期: 2023年3月30日
+ 关注

Private endpoints are somehow extremely Important when it comes to the privacy of the cloud and its security parameter, so with these few words and some pictures, I will explain how someone can create a private resource and still be able to reach it even if when it becomes unreachable from public internet, because the public access will be disabled, which means no public address ip . that will be due to the private endpoint that represents his private resource and the private dns zone that will be linked to.

Scenario :

Let us create a container (blob) in a storage account with the public access open to all networks ,then make the blob publicly available, I will access the blob from internet and form virtual network, and see the result, then I will disable the public access and try to access the blob and see again the result, and if I cannot access, then I will use the private endpoint and private dns zone to get access to my blob.

The resources:

Aucun texte alternatif pour cette image

Accessing my container (blob) from public internet :

Aucun texte alternatif pour cette image

Accessing my container (blob) from virtual network :

Aucun texte alternatif pour cette image

Now I will create a private endpoint and disable the public access for my account storage and then repeat the same previous processes meaning I will try to access my blob again.

Creating private endpoint

below is the preview of the steps I made for Resource options and virtual network and DNS, as you can see, I should select the blob as target sub-resource and if you have other file share you should create private endpoint for it and so on for table and queue. for the step of networking I should set my (virtual network) vnet to which my VM is connected, then for the step of DNS, it is generated automatically.

领英推荐

Aucun texte alternatif pour cette image

Disabling the public access for my container (blob)

I go to my storage account then in networking Firewall and virtual networks I disable all public network access and then I save.

Aucun texte alternatif pour cette image

Now I will repeat my try to access it from public internet and then from my vnet where my private endpoint, and then I see what will happen.

Accessing my container (blob) from public internet :

Now no access.

Aucun texte alternatif pour cette image

Accessing my container (blob) from virtual network :

You can see that when I disabled the public network access for my storage account before creating the private endpoint and tried I could not access, but once I created the endpoint, I was able to access.

Aucun texte alternatif pour cette image

I hope this article was useful, and you can leave a comment below if there is something that I did not mention. Thank you

要查看或添加评论,请登录

Mohamed-Lamin Taleb的更多文章

  • Azure Networking(5) : Network security Groups
    2023年4月20日

    Azure Networking(5) : Network security Groups

    We cannot talk about Azure network security group without mentioning Network security group, so in this article I will…

  • Azure Networking (4) : VPNGateway (Vnet-to-Vnet)
    2023年4月14日

    Azure Networking (4) : VPNGateway (Vnet-to-Vnet)

    In this fourth articles about Azure networking, I would like to share with how to establish connection between two…

  • How To Build Your Own ChatGPT API With Express_js
    2023年4月13日

    How To Build Your Own ChatGPT API With Express_js

    As AI is going so popular, I felt the need to explain how someone could build his own ChatGPT API using one of the…

  • Azure Networking(3) : Peering
    2023年4月3日

    Azure Networking(3) : Peering

    Peering is the best way to open a connection between two virtual networks, so the virtual machines inside those virtual…

  • Azure Networking (1): Azure Private DNS Zones
    2023年3月28日

    Azure Networking (1): Azure Private DNS Zones

    Azure private DNS zone is one of azure services to keep privacy on virtual networks (Vnet) in Azure networking, in this…

  • Patch Function in Power Apps : SharePoint Number Column
    2022年12月9日

    Patch Function in Power Apps : SharePoint Number Column

    Patch Function in Power Apps : SharePoint Number Column Let me show you, how to update a column of the type Number in…

  • How To Call Power Automate From Canvas App
    2022年12月8日

    How To Call Power Automate From Canvas App

    Here in this article, we’ll see how to call Power Automate From Canvas App using PowerApps(V2) Action in Power Automate…

  • How To Install WordPress: Step-by-Step Guide
    2022年12月8日

    How To Install WordPress: Step-by-Step Guide

    Used by more than 455 million sites, WordPress is a content management system (CMS) that has existed since 2003. It…

  • How To Get Started With NextJS
    2022年12月8日

    How To Get Started With NextJS

    Nextjs is a Framework for creating pre-rendered React websites by server-side rendering (SSR) or static side generation…

  • How to use GPS in PowerApps.
    2022年10月22日

    How to use GPS in PowerApps.

    Maps can be used to show contextual information to your users, reason for witch allowing you to represent location data…

    1 条评论

社区洞察

其他会员也浏览了