This architecture demonstrates the connectivity architecture and traffic flows for migrating data using Azure Data Factory (ADF) using Managed VNET Integration Runtime (IR) and Private Endpoints. Managed VNET IR is the compute infrastructed provisioned in managed VNET and will leverage private endpoints to securely connect to the target resources or data stores.
Download Multi-tab Visio and PDF
- Private Endpoints (Source: Azure sqlserver and sink: Azure Blob storage)
- Integration Runtime: Default fully managed Azure IR.
- IP Routing between source and sink using managed VNET network.
- Source and sink protected using private endpoints.
- Azure Managed VNET Integration Runtime
- Managed VNET with on-premises SQL Server
- Azure Data Factory terminology
- Support Data Stores and Formats
- Integration Runtime Concepts
- Linked Services
- Fully Managed compute to natively perform data movement
- Supports connecting to targets or resources with private endpoints so no need for allowing IPs in the firewall or allowing Azure services.
- More suited for brownfield environments where You don't need to create a subnet for Azure Integration Runtime that could eventually use many private IPs from your Virtual Network and would require prior network infrastructure planning.
- It does not require deep Azure networking knowledge to do data integrations securely.
- Security Consideration: Managed Virtual Network along with Managed private endpoints protects against data exfiltration.
- Uses Microsoft Backbone.