Ensure that no SQL Databases allow ingress from the internet.SQL Database includes a firewall to block access to unauthorized connections. Aftercreating your SQL Database, you can specify which IP addresses can connect to yourdatabase. You can then define more granular IP addresses by referencing the range ofaddresses available from specific datacenters.Allowing ingress for the IP range 0.0.0.0/0 (StartIp of 0.0.0.0 and EndIP of 0.0.0.0) allowsopen access to any/all traffic potentially making the SQL Database vulnerable to attacks.
Perform the following in the Azure Console:
By default, no firewall rules are configured.