Hello Azure Community,
I’m currently working with a client who is integrating their Azure Data Factory (ADF) environment with an external SQL Server hosted by a third-party provider. The goal is to set up secure communication between ADF and the SQL Server, but we've encountered a challenge with the broad range of public IP addresses that need to be whitelisted on the SQL Server side.
The client is trying to keep their cloud footprint small and cost-effective as their internal team has limited technical expertise, making it difficult to manage complex Azure setups like Self-Hosted Integration Runtimes (SHIR) and virtual machines. Ideally, we would like to avoid using a VM and SHIR due to the added costs and complexity.
We provided the IP addresses associated with ADF in the Central US region, but the provider felt that the range of IPs was too broad to whitelist securely. Here are the IP ranges we initially provided:
[moderator: redacted]
Given that, I’m wondering if anyone has suggestions for narrowing down the range of IP addresses or any alternative ways to connect Azure Data Factory to an external SQL Server in a more cost-effective and manageable way. Ideally, we would prefer to avoid the complexity of a VM if possible, but security is also a top priority for the client.
I would greatly appreciate any guidance or advice from those who have faced a similar issue or know of a better solution for reducing the number of IPs needed for secure whitelisting.
Thank you in advance!