Do I read it right that Azure does not have anything like AWS' VPC Endpoints (yet) hence traffic to Azure's services has to go over the internet? 😮

VPC-esque functionality exists for some services (e.g. Redis and App Services) but are public by default for SQL / App Service / Redis / Key Vault afaik.

For SQL, if you use Express Route, there are two public IP addresses used.

https://docs.microsoft.com/en-us/azure/sql-database/sql-database-vnet-service-endpoint-rule-overview

You can also add a "virtual network" to the SQL server through the portal or powershell.
https://docs.microsoft.com/en-us/azure/sql-database/sql-database-vnet-service-endpoint-rule-powershell

Hello @tombuildsstuff with regards to the earlier OP and link to https://docs.microsoft.com/en-us/azure/sql-database/sql-database-vnet-service-endpoint-rule-powershell

I do not see any support for adding a vnet rule to an azure SQL server - Can we add support for this by any chance? Right now I have to manually add the virtual network rule from the console to allow my servers to talk to the Azure SQL in a secure manner.

@bostonmoto would you mind opening a separate issue about this? Thanks!

No problem @tombuildsstuff I have done so here - #955
Thanks!

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks!