For connecting from Prefect Cloud to your Azure database, you'll need to whitelist the IP addresses where your flow code actually runs, not Prefect Cloud's infrastructure IPs. This is because Prefect Cloud only orchestrates your flows - the actual execution happens wherever you've deployed your flow code (like a VM, Kubernetes cluster, or other infrastructure). Here's what you need to do: 1. Identify where your flow code is actually running (e.g., which VM, container, or infrastructure) 2. Whitelist the IP address(es) of that infrastructure in your Azure database firewall rules If you're using: - A VM or physical machine: Whitelist that machine's public IP - Kubernetes: Whitelist the cluster's outbound IP addresses - Cloud-hosted infrastructure: Check your cloud provider's documentation for how to find the outbound IP addresses For additional security considerations: - Consider using Azure Private Endpoints if available - Use environment variables or Prefect blocks to store sensitive connection information - Ensure your database connection uses SSL/TLS encryption If you need help determining the specific IPs for your execution environment, let me know what infrastructure you're using to run your flows, and I can provide more targeted guidance.

The static IPs are here: https://docs.prefect.io/v3/how-to-guides/deployment_infra/managed#static-outbound-ip-addresses