question

Manish-9919 avatar image
0 Votes"
Manish-9919 asked jasjitchopra answered

need to configure appgateway for ssh

Hi Team

We want to use AppGateway to use ssh on PODs hosted on AKS cluster. however, while testing we found appgateway is not able to do ssh port 22 internally (backend pool health). Can you please confirm if we can do the same.

client -> Appgateway:port 2021 -> backendpools-sftp aks server:port 22 (unhealthy)

However, We also tested public internet -> sftp aks server:port 22. it works. so what;s the problem with Appgateway? will it support ssh internally?

azure-application-gateway
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

jasjitchopra avatar image
1 Vote"
jasjitchopra answered

Hi Manish,

You can refer to this link and read in detail why this is the case.

https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-faq

For more security options check this article here: https://docs.microsoft.com/en-us/azure/architecture/example-scenario/gateway/firewall-application-gateway

Basically the answer lies in this part I am copying and pasting from first link:

Application Gateway is a layer 7 load balancer, which means it works only with web traffic (HTTP, HTTPS, WebSocket, and HTTP/2). It supports capabilities such as TLS termination, cookie-based session affinity, and round robin for load-balancing traffic. Load Balancer load-balances traffic at layer 4 (TCP or UDP).

SSH is not supported. For other possibilities for your scenario check the second link.

Hope this helps !

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.