stackoom
  简体   繁体   中英

Azure CDN with storage account private endpoint

 原文  2021-02-10 11:50:37       azure/ azure-storage/ azure-cdn

Question

We have VAPT findings to add a storage account to private endpoint.

Storage account is used by Azure CDN as origin.

After adding endpoint the Azure CDN cannot access and gives error with an XML page.

How to access storage account with private endpoint from Azure CDN?

2 answers

solution1
 2  2021-02-10 15:06:29

You need to give access over the firewall. For Microsoft CDN (classic) that would be the following range 147.243.0.0/16 as found in the Microsoft documentation .

solution2
 0  2022-02-15 19:34:04

if you've placed your storage account in a private link then i imagine you probably want to protect its content from unwanted access.

i think @travisez13's solution would allow anything running in azure to access the storage account directly, assuming they could guess the names.

i think you may want to try this approach instead: https://docs.microsoft.com/en-us/azure/cdn/cdn-sas-storage-support

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Connect Azure Data Factory with Private Endpoint to Storage Account with another Private Endpoint in the same VNet DR for Azure CDN over Storage Account Fallback storage account (or multiple storage accounts) for Azure CDN Azure cloud storage account with custom endpoint suffix Access storage account using private IP when using private endpoint Creating a container under a private storage account in Azure Azure Storage account private link custom domain CDN with Storage Account Azure CDN preventing Storage Account Static Site Authentication with Active Directory Error adding files shares to a storage account with a private endpoint
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM