Enhance Azure Data Exfil with DNS lookup

databricks / terraform-databricks-lakehouse-blueprints

Set of Terraform automation templates and quickstart demos to jumpstart the design of a Lakehouse on Databricks. This project has incorporated best practices across the industries we work with to deliver composable modules to build a workspace to comply with the highest platform security and governance standards.

Other

72 stars 33 forks source link

Enhance Azure Data Exfil with DNS lookup #37

Open nathanknox opened 1 year ago

nathanknox commented 1 year ago

Leverage the DNS data source from the dns provider (https://registry.terraform.io/providers/hashicorp/dns/latest/docs/data-sources/dns_a_record_set) so that customers don't have to resolve their URIs (for SCC relay)

nathanknox commented 1 year ago

Alternatively...maybe just remove entirely in favor of service tag. Need to confirm feasibility first.

alexott commented 3 months ago

It's done in the Terraform examples: https://github.com/databricks/terraform-databricks-examples/blob/main/modules/adb-exfiltration-protection/firewall.tf#L26