Peliqan allows you to securely connect to on prem (on premise) data sources such as locally installed databases (SQL Server, MySQL, Postgres etc.), on prem business applications and on prem servers using one of the following methods:
- Scenario 1: Open up a port on your on-prem firewall and apply IP Whitelisting
- Scenario 2: Setup a VPN tunnel between your on-prem environment and the Peliqan data cloud
Scenario 1: IP Whitelisting
In this scenario, we assume you have an on-prem firewall, you open up a port on the firewall for access by Peliqan, and you whitelist the Peliqan IP addresses so that no one else can connect to the given port. More info:
IP whitelistingScenario 3: Peliqan VPN tunnel
Peliqan uses the VPN NetBird, a secure software-only VPN that establishes a peer to peer connection between your on-prem server and the Peliqan data cloud. Once the VPN tunnel is active, you can add e.g. a database connection in Peliqan, using the local IP address of your server.
Contact Peliqan Support if you want to set up an on-prem connection. Peliqan Support will provide you with a key, needed to set up the NetBird client on your server.
About NetBird
NetBird is an open-source, secure, peer-to-peer private network built on top of WireGuard. It enables encrypted connections between devices across different networks without the need for complex VPN setups or static IPs. Ideal for secure connectivity to internal services, NetBird simplifies private networking using a modern control plane.
How it works
NetBird uses a centralized management service (self-hosted or cloud) to coordinate peer connections and distribute WireGuard keys. Once connected, peers communicate directly using encrypted WireGuard tunnels.
Security
- End-to-end encryption with WireGuard (ChaCha20, Curve25519)
- Granular access control and group-based permissions
- Device authorization, NAT traversal, and zero-trust principles
Supported Server operating Systems
- Linux (including server distributions)
- macOS
- Windows (from Windows 10)
More info:https://www.netbird.io/
Peliqan VPN client setup guide
This guide applies to installing the NetBird client on both Windows servers and Linux servers.
- Download and install the NetBird client. https://app.netbird.io/install
- After installing the NetBird client, execute the below command at the command line. Use the setup key provided by Peliqan Support.
netbird up --setup-key <SETUP KEY FROM PELIQAN>
- Run the command
netbird status
and check if the response includesSignal:connected
.
Connect to an on-prem SQL Server (Windows server)
Make sure TCP/IP is enabled in your SQL Server Configuration Manager:
Next, in Peliqan go to Connections > Add Connection > Search for “SQL Server”. Enter the connection details, using the internal IP of your on-prem server as the hostname.
Do this after the Peliqan Support team confirmed that the VPN tunnel to your on-prem server is active !
Running the VPN client on a separate machine
If you run the VPN Client (NetBird) on the same machine as your local on-prem DB (or other data source), you can directly connect from the Peliqan Cloud to the on-prem resource, using the IP address of the VPN network and the correct port of the DB:
If you run the VPN Client (NetBird) on a separate server or virtual machine (VM), you have to set up port forwarding on that machine, to the server with the on-prem DB (or other data source):
Set up port forwarding on Linux with IP Tables.
Set up port forwarding on Windows Server using netsh
.
Example to add a port forwarding for SQL Server with port 1433:
netsh interface portproxy add v4tov4 listenport=1433 listenaddress=0.0.0.0 connectport=1433 connectaddress=10.10.0.x
To list all port forwardings:
netsh interface portproxy show all
To delete a port forwarding:
netsh interface portproxy delete v4tov4 listenaddress=0.0.0.0 listenport=1433