Allow SQL Database to join Virtual Network (VPN)
I have Cloud Service with web/worker roles connected to SQL Database (web edition).
I also have Virtual Network with point-to-site client (P2S) connection, but I cannot connect to my SQL Database (web edition) via VPN (eg using SSDM). Instead I have to use internet connection.
IP address assigned by my ISP has short lifetime and is reset daily. This means that almost every time I want to perform Admin tasks, I have to log onto Windows Azure portal to change my IP address in the SQL database firewall (defining a range of addresses is not an option).
VPN would mean I just need to set firewall address list once, and I also like the additional layer of security offered by VPN. P2S requires certificate installed on each client computer, so if passwords / desktop apps did fall into wrong hands, no one would be able to use them to connect from another computer.
Hello Guy Haycock,
It's been almost a year since you acknowledged the request. Has there been any progress?
Not able to connect to SQL Azure via a VPN is a big security concern...
Paul Mendoza commented
We might stop using sql azure just because of the security problem.
Ditto. This adding an IP address is a lot of administration and error prone. We have a bunch of devs and QAs who have non-static IP addresses.
Any progress on this in the last 11 months?
Kitt Holland commented
I would like this to happen as well, perhaps similar to how Websites can now be tunneled into virtual networks ? I would love to be able to take out the public endpoint for security purposes and have all traffic to the SQL server stay inside azure.
same here, changing the ip always in the admin portal is annoying and a big security risks, especially when you have many remote developers with dynamic ips.
Damodhar (Sr. System Admin) commented
I am also having same issue. I want to connect SQL Database (web edition) via VPN instead of allowing IP based firewall rule.