Private Endpoints for Azure Storage are now Generally Available
Updated: 13 March, 2020
Private Endpoints provide secure connectivity to Azure Storage from an Azure virtual network (VNet). Private Endpoints for Azure Storage are now generally available in all Azure public regions.
Private endpoints enable clients on an Azure virtual network (VNet) to securely access data from a storage account over a private link. This enables network traffic between the VNet and the storage service to traverse over the Microsoft backbone, eliminating exposure from the public internet. A private endpoint uses an IP address from your VNet’s address space for the storage account service.
Private endpoints enable you to block exfiltration of data from your VNet. Using private endpoints also enables you to securely connect to a storage account from your on-premises network, when that network is connected to your VNet using Express Route or VPN.