Documentation

Understanding Encryption on your ANF Cluster

Azure NetApp Files based storage works differently than connecting Azure premium block storage directly to a node. The storage is mounted as an NFS volume and the data flows within the private network of the associated data centre. This data flow is unencrypted within the private Azure vnet for performance considerations. All data is encrypted at rest in the storage, and no access is allowed to the private network by any other instance. This security posture has been independently penetration tested for SOC2 compliance and found to be secure.

Azure NetApp Files Architecture

Additionally, for more advanced security, you can opt to encrypt all traffic from your application to your nodes. This is Instaclustr’s recommended option and is enabled by default.  

Finally, you can provision your cluster in Private IP mode if you are utilising your own Azure account with Instaclustr.

By Instaclustr Support
Previous Article The Provisioning Life Cycle Next Article Creating an AWS Data Centre with EBS Encryption
Need Support?
Learn More
Experiencing difficulties on the website or console?
Status page for known incidents
Already have an account?
Log In to the Console
Need help with your cluster?
Contact Support
Why sign up?
To experience the ease of creating and managing clusters via the Instaclustr Console
Spin up a cluster in minutes
Free Trial