azure-databricks-vnet-exfiltration

Tailored to West Europe Azure region due to hardcoded IPs/FQDNs for various Databrick resources. If you want to port to different region use this url

Note: currently templates are deployed through portal (create own deployment template)

Steps

deploy Databricks inside VNET

databricks-DBX-VNET-TAG-RT.json

deploy FW

databricks-FW-IP-rules-westeurope.json

asign route table to both VNET subnets (dataplame, controlplane) - rename if needed

az network vnet subnet update -g YOUR_RESOURCE_GROUP -n dataplane-subnet --vnet-name databricks-vnet --route-table dbx-route
az network vnet subnet update -g YOUR_RESOURCE_GROUP -n controlplane-subnet --vnet-name databricks-vnet --route-table dbx-route

create Storage with Private link
deny internet from Databricks NSG
add FW rules for python/r packages *pypi.org,*pythonhosted.org,cran.r-project.org,*maven.org, ports: Https:443,Http:80,Http:8080

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
README.md		README.md
databricks-DBX-VNET-TAG-RT.json		databricks-DBX-VNET-TAG-RT.json
databricks-DBX-VNET-TAG-RT.params.json		databricks-DBX-VNET-TAG-RT.params.json
databricks-FW-IP-rules-westeurope.json		databricks-FW-IP-rules-westeurope.json
dbx-cluster-test.json		dbx-cluster-test.json
dbx-vnet-all-in-one-w-TAG-FW-RT.json		dbx-vnet-all-in-one-w-TAG-FW-RT.json
run_dempoyment.sh		run_dempoyment.sh
test.dbc		test.dbc

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

azure-databricks-vnet-exfiltration

Steps

About

Releases

Packages

Languages

michalmar/azure-databricks-vnet-exfiltration

Folders and files

Latest commit

History

Repository files navigation

azure-databricks-vnet-exfiltration

Steps

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages