You have a network security group configured on your VNET. It is blocking target service tag Storage. You create a private endpoint to Azure Storage Account. Can VNET resources access the storage account?
Experience Level: Junior
Tags: Azure CloudAzure Network Security GroupsAzure Private Link Service
Answer
Yes. Private link doesn't support network security groups so the traffic to private link will not be filtered out and the resources from the VNET are able to reach the Azure storage account via private link.
Related Azure Cloud job interview questions
You use Azure Storage with GRS settings. What is the target location where data is replicated to?
Azure CloudAzure Storage JuniorYour Azure virtual machines are assigned to availability zone 1 and 2. Your Azure NAT gateway is assigned to zone 1. Can both virtual machines use the NAT gateway for outgoing traffic?
Azure Cloud JuniorYou are configuring your Azure virtual network gateway to authenticate with Azure AD. What protocol and what VPN client do you need?
Azure CloudAzure virtual network gateway JuniorYou want to connect from your Azure virtual machine (VM) to Azure CosmosDB. Your virtual network is secured by network security group (NSG) that filters outbound traffic. What do you need to configure to allow traffic from your VM to CosmosDB?
Azure CloudAzure Cosmos DBAzure Network Security GroupsAzure Virtual Machines JuniorHow many application security groups (ASG) do you need to assign ASG to virtual machines in two different virtual networks?
Azure CloudAzure Virtual MachinesAzure Virtual Networks Junior
