Azure Private Link for Azure Cosmos DB now generally available
We are thrilled to announce the general availability of Azure Private Link for Azure Cosmos DB, making Azure Cosmos DB the next Azure service compatible with Azure Private Link.
What is Azure Private Link
Azure Private Link provides private connectivity from a virtual network to Azure platform as a service (PaaS) services. It simplifies the network architecture and secures the connection between endpoints in Azure by eliminating data exposure to the public internet.
By using Azure Private Link, you can connect to an Azure Cosmos account from your virtual network via a private endpoint, which is a set of private IP addresses in a subnet within the virtual network. You can then limit access to your Azure Cosmos account over these private IP addresses. When Private Link is combined with restricted network security group (NSG) policies, it helps reduce the risk of data exfiltration.
Private endpoints allow users to access an Azure Cosmos account from within the virtual network or from any peered virtual network. Resources mapped to private endpoints are also accessible on-premises over private peering through VPN or Azure ExpressRoute.
Get started today
Azure Private Link for Azure Cosmos DB is available on Azure Cosmos DB’s SQL API (gateway mode), Cassandra API, API for MongoDB (version 3.6), Gremlin API and Table API.
Learn more about Azure Private Link for Azure Cosmos DB and create your first private endpoint by using the Azure Portal, PowerShell or Azure Resource Manager (ARM) templates.