You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/service-connector/concept-service-connector-internals.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -89,19 +89,19 @@ Service Connector sets the connection configuration when creating a connection.
89
89
90
90
Service Connector offers three network solutions for users to choose from when creating a connection. These solutions are designed to facilitate secure and efficient communication between resources.
91
91
92
-
1. Firewall: This solutions allows connection through public network and compute resource will access target resource with public IP address. When selecting this option, Service Connector verifies the target resource's firewall settings and adds a rule to allow connections from the source resource's public IP address. If the resource's firewall have an option to allows all Azure resources accessing, Service Connector will enable this setting. However, if the target resource denies all public network traffic by default, Service Connector will not modify this setting. In this case, you should choose another option or update the network settings manually before trying again.
92
+
1.**Firewall**: This solutions allows connection through public network and compute resource will access target resource with public IP address. When selecting this option, Service Connector verifies the target resource's firewall settings and adds a rule to allow connections from the source resource's public IP address. If the resource's firewall have an option to allows all Azure resources accessing, Service Connector will enable this setting. However, if the target resource denies all public network traffic by default, Service Connector will not modify this setting. In this case, you should choose another option or update the network settings manually before trying again.
93
93
94
-
2. Service Endpoint: This solution enables compute resource to connect to target resources via a virtual network, ensuring that connection traffic does not pass through the public network. It is only available if certain preconditions are met:
94
+
2.**Service Endpoint**: This solution enables compute resource to connect to target resources via a virtual network, ensuring that connection traffic does not pass through the public network. It is only available if certain preconditions are met:
95
95
- The compute resource must have VNet integration enabled. For Azure App Service, this can be configured in its networking settings; for Azure Spring Apps, users must choose to deploy their app in a VNet during the creation stage.
96
96
- The target service must support VNet solutions. For a list of supported services, refer to [Virtual Network service endpoints](/azure/virtual-network/virtual-network-service-endpoints-overview).
97
97
98
-
When selecting this option, Service Connector adds the private IP address of the compute resource in the VNet to the target resource's Virtual Network rules and enables the service endpoint in the source resource's subnet configuration. If the user lacks sufficient permissions or the resource's SKU or region does not support service endpoints, connection creation will fail.
98
+
When selecting this option, Service Connector adds the private IP address of the compute resource in the VNet to the target resource's Virtual Network rules and enables the service endpoint in the source resource's subnet configuration. If the user lacks sufficient permissions or the resource's SKU or region does not support service endpoints, connection creation will fail.
99
99
100
-
3. Private Endpoint: This solution is a recommended way to connect resources via a virtual network and is only available if certain preconditions are met:
100
+
3.**Private Endpoint**: This solution is a recommended way to connect resources via a virtual network and is only available if certain preconditions are met:
101
101
- The compute resource must have VNet integration enabled. For Azure App Service, this can be configured in its networking settings; for Azure Spring Apps, users must choose to deploy their app in a VNet during the creation stage.
102
102
- The target service must support VNet solutions. For a list of supported services, refer to [Private-link resource](/azure/private-link/private-endpoint-overview#private-link-resource).
103
103
104
-
When selecting this option, Service Connector does not perform any additional configurations in the compute or target resources. Instead, it verifies the existence of a valid private endpoint and fails the connection if no one is found. For added convenience, users can select the "New Private Endpoint" checkbox in the Azure Portal when creating a connection. With it, Service Connector will automatically create all related resources for the private endpoint in the proper sequence, simplifying the connection creation process.
104
+
When selecting this option, Service Connector does not perform any additional configurations in the compute or target resources. Instead, it verifies the existence of a valid private endpoint and fails the connection if no one is found. For added convenience, users can select the "New Private Endpoint" checkbox in the Azure Portal when creating a connection. With it, Service Connector will automatically create all related resources for the private endpoint in the proper sequence, simplifying the connection creation process.
0 commit comments