Member-only story
What is Azure Private Link? This is a service for securely connecting (linking) to Azure PaaS services outside VNET from inside VNET, and this article is a supplement to the official Microsoft documentation .
Few words about features
Compared to traditional VNET service endpoints, Azure Private Link offers the following advantages:
- Permission to access only specific resources from VNET, prevent threat of data leakage: Traditional service endpoints have network access to all SQL Databases in the same region as the allowed SQL Database due to permission restrictions by NSG tags. Private Endpoint allows you to access only specific linked resources.
- Remotely accessible on-premises or VNET peered: Private Endpoint is located inside the VNET and has an internal IP address. Even from an on-premises or remote peered VNET, if you can access this internal IP address, you can securely connect to the Azure service linked to the Private Endpoint destination. That is, you can access the Azure PaaS service as if you were accessing a VM located inside the VNET.
