Skip to main content
NetApp Knowledge Base

Does disabling the Public Access on Azure Managed Disks impact CVO?

  1. Last updated
  2. Save as PDF
Views:
260
Visibility:
Public
Votes:
0
Category:
cloud-volumes-ontap-cvo
Specialty:
cloud
Last Updated:

Applies to

  • Cloud Volumes ONTAP (CVO)
  • Microsoft Azure
  • Azure Managed Disks

Answer

  • Azure Managed disks should only be accessible from Public network via SAS for import/export tasks when they are unattached from the Azure VM.
  • In normal scenarios when disks are attached to the CVO VMs,  the public access does not impact CVO Azure Managed Disks.
  • There should be no need for network access to the Managed disks outside of the communication between them and the VM(s) they are attached to.
  • If your business requires to disable the public and private access on Azure Managed Disks for security concerns, this can be done from the Azure portal but has to be done individually on each Managed Disk.
    • If the desired outcome is to allow private access to the Managed Disks but disable public access a Disk Access will need to be created in the Resource Group of the CVO
    • If the desired outcome is to disable both public and private access to the Managed Disks this can easily be done from the Azure portal under the Network section for each individual disk:

clipboard_e84b6d5a4a9b15a8c66bf908915c542e2.png

Additional Information

additionalInformation_text

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.