Azure SQL (private Endpoint) to AWS lambda access

Question

Hi All,

We have an Azure SQL server with private endpoint and it needs to be accessed by an AWS lambda service which is public (no VPC endpoint configured). Can we get the IP for this lambda service which can be whitelisted at the the SQL server Firewall rules? If yes, how can we get the IP assigned to this AWS lambda service (ap-southeast-2)?

TYIA

Answer 1

@SujinaSJ-1789

Thank you for reaching out.

Based on your question above I understand you have an Azure SQL server with private endpoint and it needs to be accessed by an AWS lambda service. Lambda service has a public IP address assigned and no VPC endpoint configured yet. You want to know if you can IP address of the Lamda service whitelisted in SQL Firewall rules and access the private endpoint IP address.

Based on my understanding above. Communication cannot be established between AWS lambda service's Public IP and Azure SQL server's private endpoint IP address(private IP). If you want to establish the communication via private network i.e Lambda Service (with VPC endpoint) will establish connectivity with private endpoint IP of the SQL server. In this case below will be the high-level requirements.

• Get a private IP address access enabled for your Lambda Service.
• Create a Site-to-Site VPN between Azure and AWS as this help establish a private connectivity between two networks. You can follow this documentation for implementation. This will allow communication between AWS Lambda's Private IP and private endpoint.
• Add the Lambda's private IP above to SQL server's firewall.

Hope this helps! Please let me know if you have any additional questions. Thank you!

---

​​Please "Accept the answer" if the information helped you. This will help us and others in the community as well.