SSH tunnels
SSH tunnels protect data you transmit over the internet and import into the application. Exposing an SSH tunnel as the only gateway to your network is more secure than leaving your databases and ports open to the internet. SSH tunnels use SFTP (SSH File Transfer Protocol).
SHA1 DeprecationOpenSSH announced SHA1 deprecation on 2021-08-20 due to known vulnerabilities in the algorithm. SHA2 signing algorithm support has been added for SSH-based connections, and SHA1 signing algorithms are now deprecated. Customers using OpenSSH servers newer than version 5.9 (released 2011-09-06) are not affected.
Set up SSH tunnel integration
SSH tunnel integration requires one of the following database integrations:
- MSSQL
- MySQL
- PostgreSQL
Once your project has one of these integrations, follow these steps:
- Go to Data & Assets > Integrations.
- Edit the existing database integration.
- Scroll to the SSH tunnel section and select the checkbox.
- Select an existing SSH tunnel and save the integration.
Your database integration now uses an SSH tunnel to communicate with the application.
ImportantStatic public IPs are not supported for SSH tunnels. You can enable either static IPs or an SSH tunnel — not both.
For technical setup details, see Databases and secure connections.
Updated 8 days ago