Public Connectivity for Confluent Cloud Clusters on Azure

Confluent Cloud offers data in motion services, such as Kafka, ksqlDB, Schema Registry, and Audit Logs, that can be shared across organizations over the public internet on Azure. Confluent Cloud services include public internet connectivity for the Basic, Standard, and Dedicated cluster types.

Because the cloud infrastructure used by Confluent Cloud does not guarantee static IP addresses across cluster changes, DNS is used to provide a consistent address. The underlying IP addresses might be stable for a period of time, but are subject to change at any time, so they should not be relied upon for any use.

Confluent provides egress static IP addresses that you can use for communicating between Dedicated Kafka clusters in Confluent Cloud and external data sources and sinks. For more information, see Use Static IP addresses on Confluent Cloud and Egress Static IP Addresses for Confluent Cloud Connectors.

There is no support for static ingress IP addresses. However, DNS resolution for each Kafka cluster follows a predictable pattern. For example, if your cluster bootstrap URL is pkc-12345.<region>.<cloud>.<tld> and the default broker prifix is used, then all broker endpoints will be of the format:

b0-pkc-12345.<region>.<cloud>.<tld>
b1-pkc-12345.<region>.<cloud>.<tld>
b2-pkc-12345.<region>.<cloud>.<tld>
...

The following blogs describe how the common outbound proxies handle IP address changes:

• DNS for Service Discovery in HAProxy - HAProxy Technologies.
• DNS for Service Discovery with NGINX and NGINX Plus.