Azure — Difference between Azure Private Links and Azure Service Endpoints
Azure Private Links vs Azure Service Endpoints — Comparison between Private Links and Service Endpoints
Azure Private Link (Private Endpoint) allows you to access Azure PaaS services over Private IP address within the VNet. It gets a new private IP on your VNet. When you send traffic to PaaS resource, it will always ensure traffic stays within your VNet.
Azure Service Endpoint provides secure and direct connectivity to Azure PaaS services over an optimized route over the Azure backbone network. Traffic still left your VNet and hit the public endpoint of PaaS service.
Azure PaaS Services: SQL Databases, Storage, Key Vault, ServicesBus, App Services, Cosmos DB, Event Hubs, SQL Data Warehouse etc.
Key Points
Access
Service endpoint — It remains a publicly routable IP address.
Private endpoint — It is a private IP in the address space of the virtual network where the private endpoint is configured.
Both are design to allow you to restrict who connects to your service…
