cancel
Showing results for 
Search instead for 
Did you mean: 
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Showing results for 
Search instead for 
Did you mean: 

NAT gateway with public IP for SCC disabled Databricks cluster

vsd
New Contributor

Hi Team,

We need to have single public IP for all outbound traffic flowing through our Databricks cluster. The Secure Cluster Connectivity (SCC) is disabled for our cluster and currently we get dynamic public IPs assigned to the VMs under managed resource group.

Can we explicitly configure NAT gateway (with a public IP) for a Databricks cluster having SCC disabled? Or does it have any dependency on SCC?

Thank you!

1 ACCEPTED SOLUTION

Accepted Solutions

Hi, 

I don't think you will find any reference at MS docs. This is custom setup. But really similar approach is done in below knowledge base entry. In this article they choose to use firewall as stable egrees IP, but it doesn't matter. The same kind of steps you need to perform to make it work with your own NAT Gateway. Basically, you need to route all outbound traffic from databricks subnets to NAT Gateway 

https://kb.databricks.com/cloud/azure-vnet-single-ip

View solution in original post

5 REPLIES 5

szymon_dybczak
Contributor III

Hi @vsd ,

I think so. If your workspace is VNET injected, then you can deploy your own NAT Gateway and redirect all outbound traffic from subnets through UDR to that gateway.

Thank you @szymon_dybczak! I was not able to find any reference documentation which mentions this very clearly. Do you have any reference for configuring such setup?

Hi, 

I don't think you will find any reference at MS docs. This is custom setup. But really similar approach is done in below knowledge base entry. In this article they choose to use firewall as stable egrees IP, but it doesn't matter. The same kind of steps you need to perform to make it work with your own NAT Gateway. Basically, you need to route all outbound traffic from databricks subnets to NAT Gateway 

https://kb.databricks.com/cloud/azure-vnet-single-ip

vsd
New Contributor

Thank you @szymon_dybczak ! That's helpful!

No problem @vsd, I'm glad that it help you 🙂

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you won’t want to miss the chance to attend and share knowledge.

If there isn’t a group near you, start one and help create a community that brings people together.

Request a New Group