Azure Private Link Backups
Azure Private Link enables you to access Azure PaaS Services (for example, Azure Storage and SQL Database) and Azure hosted customer-owned/partner services over a private endpoint in your virtual network. Traffic between your virtual network and the service travels the Microsoft backbone network. Exposing your service to the public internet is no longer necessary.
By leveraging the Azure private link, the Controller backups will happen privately from your VNet so that your blob storage account does not need to be exposed to the outside world.
-
Create an Azure Storage Account.
-
Set up the Storage Account for Private Link:
-
On the Networking tab for the storage account creation, select Private endpoint for the connectivity method.
-
Add a new private endpoint with the target of the blob storage resource and enable DNS Integration.
If you currently have existing private endpoints deployed, you may need to leverage an existing private zone in another subscription. This must be completed through the dedicated private endpoint creation workflow. For additional assistance with this setup please reach out to an Aviatrix Solution Engineer.
-
-
Verify Backup through Controller.
Once successful, backing up traffic from the Controller will be performed privately across private link so that associated storage account does not need to be accessible publicly.
OpenVPN is a registered trademark of OpenVPN Inc.