none
Vnet service endpoint - event hub RRS feed

  • Question

  • Hi,

    If i put an Event Hub into a VNET SE on a private subnet how do I communicate with other service i.e. a Service Plan with a function OR a Blob Queue OR ADLS etc where my event data will be sent/processed?



    • Edited by Deason Monday, September 9, 2019 3:20 PM
    Monday, September 9, 2019 3:20 PM

All replies

  • Vnet service endpoint for Azure Event hub creates a secure tunnel for communication between resources in a Vnet and Azure event hub. Traffic from your virtual network to your Azure Service Bus Premium namespaces and Standard and Dedicated Azure Event Hubs namespaces can be kept secure from public Internet access and completely private on the Azure backbone network.

    Can you elaborate your infrastructure here on how you are implementing this plan?

    Regards,

    Subhash


    Tuesday, September 10, 2019 4:57 AM
    Moderator
  • Hi, 

    When you create a service endpoint to Even HUB, you are not placing Event Hub in a VNET. It is a link where you can connect from a VNET internally using Private IP address. 

    how do I communicate with other service --> What is the source that you are mentioning here?

    There will be no change in the way that your Even being processed. 

    Regards, 

    Msrini


    Tuesday, September 10, 2019 4:58 AM
    Moderator
  • I think i understand now, the confusion is where you have the firewall rules only enabled IF you tick "allowed access from selected networks"...

    I thought this inferred you needed to associate to a VNET and apply FW rules to the VNET, however they are two different configurations.


    • Edited by Deason Tuesday, September 10, 2019 7:11 AM
    Tuesday, September 10, 2019 6:17 AM
  • Yes, you are right. If you want to allow only specific source IP to communicate to Event hub you can configure it on the Firewall settings. 

    Regards, 

    Msrini

    Tuesday, September 10, 2019 8:18 AM
    Moderator
  • 1.Enable service endpoint for Event Hub on the specific Vnet,

    

    2.After enabling service endpoint to bind it with the Event Hub namespace from the Event hub blade.

    Here you will having two options,

    1. Allow all networks à Which will allow all networks/ IPs
    2. Allow Selected networks à Where you can specify the service end point enabled Vnets,

    Note: Enabling a service endpoint, by default, enables the denyall rule in the IP firewall associated with the virtual network. You can add specific IP addresses in the IP firewall to enable access to the Event Hub public endpoint.

    If you think your question has been answered, click "Mark as Answer" if just helped click "Vote as helpful". This can be beneficial to other community members reading this forum thread.

    ________________________________________________________________________

    Best regards

    Subhash

    Tuesday, September 10, 2019 9:14 AM
    Moderator
  • Hi, 

     

    Just checking in if you have had a chance to see the previous response. If this answers your query, do click “Mark as Answer” and Up-Vote for the same.

    Regards, 

    Msrini

    Friday, September 13, 2019 12:24 PM
    Moderator
  • Hi, 

    Just checking in if you have had a chance to see the previous response. If this answers your query, do click “Mark as Answer” and Up-Vote for the same.

    Regards, 

    Subhash

    Friday, September 20, 2019 11:56 AM
    Moderator