need to configure appgateway for ssh

Manish Sharma 6 Reputation points Microsoft Employee
2022-03-10T15:27:52.02+00:00

Hi Team

We want to use AppGateway to use ssh on PODs hosted on AKS cluster. however, while testing we found appgateway is not able to do ssh port 22 internally (backend pool health). Can you please confirm if we can do the same.

client -> Appgateway:port 2021 -> backendpools-sftp aks server:port 22 (unhealthy)

However, We also tested public internet -> sftp aks server:port 22. it works. so what;s the problem with Appgateway? will it support ssh internally?

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
968 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Jasjit Chopra 6 Reputation points MVP
    2022-03-10T15:37:59.533+00:00

    Hi Manish,

    You can refer to this link and read in detail why this is the case.

    https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-faq

    For more security options check this article here: https://learn.microsoft.com/en-us/azure/architecture/example-scenario/gateway/firewall-application-gateway

    Basically the answer lies in this part I am copying and pasting from first link:

    Application Gateway is a layer 7 load balancer, which means it works only with web traffic (HTTP, HTTPS, WebSocket, and HTTP/2). It supports capabilities such as TLS termination, cookie-based session affinity, and round robin for load-balancing traffic. Load Balancer load-balances traffic at layer 4 (TCP or UDP).

    SSH is not supported. For other possibilities for your scenario check the second link.

    Hope this helps !

    1 person found this answer helpful.