Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

How can we improve HDInsight?

Define NSG Rules for Restricting Outbound Internet Access

The documentation states clearly that if you add an HDInsight cluster to a VNet, then you cannot apply outbound NSG rules. Having unrestricted outbound internet access is a significant risk. Are there any other mitigating controls in place to detect data leakage?

51 votes

Deane Hardwick shared this idea · August 24, 2016 · Flag idea as inappropriate… · Admin →

2 comments

An error occurred while saving the comment

Corey Callaway commented · October 21, 2016 07:16 · Flag as inappropriate

I agree, having to create multiple additional rules based on the azure datacenter IP addresses is cumbersome, and adds extra management overhead and monitoring if those IP addresses change.

Currently this is the only solution- https://blogs.technet.microsoft.com/keithmayer/2016/01/12/step-by-step-automate-building-outbound-network-security-groups-rules-via-azure-resource-manager-arm-and-powershell/

Submitting...
Courtney commented · August 26, 2016 13:03 · Flag as inappropriate

I agree

Submitting...

HDInsight: Security

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 7,203 ideas
- Additional Services 327 ideas
- Analytics Platform System 20 ideas
- API Apps 0 ideas
- API Management 664 ideas
- Automation 541 ideas
- Azure Active Directory 5,349 ideas
- Azure Active Directory Application Requests 289 ideas
- Azure Advisor 35 ideas
- Azure Analysis Services 189 ideas
- Azure API for FHIR 15 ideas
- Azure App Configuration 49 ideas
- Azure Arc 27 ideas
- Azure Automanage 11 ideas
- Azure Backup 625 ideas
- Azure Blockchain Service 12 ideas
- Azure Bot Service 35 ideas
- Azure Certified Device 16 ideas
- Azure Cloud Shell 369 ideas
- Azure Cognitive Services 73 ideas
- Azure Communication Services 25 ideas
- Azure Confidential Compute 2 ideas
- Azure Container Instances 169 ideas
- Azure Container Registry 102 ideas
- Azure Cosmos DB 294 ideas
- Azure CycleCloud 6 ideas
- Azure Data Explorer 224 ideas
- Azure Data Share 12 ideas
- Azure Database for MariaDB 18 ideas
- Azure Database for MySQL 76 ideas
- Azure Database for PostgreSQL 164 ideas
- Azure Database Migration Service 80 ideas
- Azure Databricks 302 ideas
- Azure Dev Spaces 11 ideas
- Azure Digital Twins 20 ideas
- Azure Event Grid 68 ideas
- Azure FarmBeats 14 ideas
- Azure Functions 244 ideas
- Azure FXT Edge Filer 0 ideas
- Azure Governance 207 ideas
- Azure HPC Cache 0 ideas
- Azure IoT (Hub, DPS, SDKs) 337 ideas
- Azure IoT Central 159 ideas
- Azure IoT Edge 96 ideas
- Azure IoT Security 0 ideas
- Azure IoT Solution Accelerators 45 ideas
- Azure Key Vault 180 ideas
- Azure Kinect DK 71 ideas
- Azure Kubernetes Service (AKS) 315 ideas
- Azure Lighthouse 32 ideas
- Azure Management Groups 24 ideas
- Azure Maps 76 ideas
- Azure Marketplace 464 ideas
- Azure Media Services 262 ideas
- Azure Migrate 79 ideas
- Azure mobile app 367 ideas
- Azure Monitor 266 ideas
- Azure Monitor- Alert Management 164 ideas
- Azure Monitor-Application Insights 815 ideas
- Azure Monitor-Log Analytics 1,013 ideas
- Azure NetApp Files (ANF) 35 ideas
- Azure Object Anchors 0 ideas
- Azure Pack 298 ideas
- Azure Portal 2,245 ideas
- Azure Purview 191 ideas
- Azure Quantum 0 ideas
- Azure Red Hat OpenShift 13 ideas
- Azure Remote Rendering 10 ideas
- Azure Reservations 188 ideas
- Azure Resource Manager 567 ideas
- Azure Search 304 ideas
- Azure Security Center 329 ideas
- Azure Sentinel 116 ideas
- Azure Service Health 47 ideas
- Azure SignalR Service 17 ideas
- Azure Spatial Anchors 31 ideas
- Azure Sphere 81 ideas
- Azure Spring Cloud 3 ideas
- Azure Stack HCI 8 ideas
- Azure Stack Hub 204 ideas
- Azure Synapse Analytics 505 ideas
- Azure TCO Calculator 30 ideas
- Azure Time Series Insights 34 ideas
- Azure Web PubSub service 1 idea
- Batch 41 ideas
- Batch AI 10 ideas
- Biztalk Services 14 ideas
- Blockchain 56 ideas
- Cache 43 ideas
- Change Tracking 14 ideas
- Cloud Services (Web and Worker Role) 275 ideas
- Cost Management 366 ideas
- Cross region move for Azure resources 11 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 1 idea
- Data Catalog 181 ideas
- Data Factory 1,320 ideas
- Data Lake 356 ideas
- Data Science VM 24 ideas
- Diagnostics and Monitoring 204 ideas
- Event Hubs 45 ideas
- Global Infrastructure 44 ideas
- HDInsight 138 ideas
- Lab Services 388 ideas
- Logic Apps 1,925 ideas
- Machine Learning 243 ideas
- Mobile Engagement 19 ideas
- Networking 1,494 ideas
- Notification Hubs 37 ideas
- Project Bonsai 31 ideas
- Scheduler 43 ideas
- Scripting and Command Line Tools 104 ideas
- SDK and Tools 150 ideas
- Security and Compliance 106 ideas
- Service Bus 211 ideas
- Service Fabric 305 ideas
- Signup and Billing 1,808 ideas
- Site Recovery 300 ideas
- SQL Data Sync 68 ideas
- SQL Database 904 ideas
- SQL Managed Instance 154 ideas
- SQL Server 10,836 ideas
- SQL Server - Big Data Clusters 48 ideas
- Storage 1,046 ideas
- StorSimple 26 ideas
- Stream Analytics 272 ideas
- Support Feedback 276 ideas
- System Center Data Protection Manager 152 ideas
- Update Management 187 ideas
- Virtual Machines 1,725 ideas
- Web Apps 672 ideas
Microsoft Azure