From our CircleCI builds, we are in need of connecting to our Atlas replica sets. We have a VPC Peering connection from our AWS VPC so my first idea was to setup a bastion host within our VPC where our CircleCI servers can SSH tunnel from, however it seems like it’s not possible to connect to a replica set via SSH tunneling from what I’ve read online. Would a VPN be the next best option? Any other suggestions?
Welcome to MongoDB community!
I read that Circle CI can be installed in your AWS vpc and it can be peered to Atlas project.
Do you have another topology in mind?
Hey @Pavel_Duchovny, thanks for the reply. In order to do that we would have to get an enterprise package which we don’t want to do at this time.
So if you are running outside of AWS you will need to whitelist a perminant public IP/CIDR of your Circle CI servers.
We can’t whitelist IPs since the CircleCI block is too large and open to many others. I’m looking at solutions to setup a VPN connection since SSH tunneling doesn’t seem to be an option.
In that case I would recommend looking into Aws Private Link connection setup
Connections to private endpoints within your VPC can be made transitively from:
- An on-premises data center connected with DirectConnect to the private endpoint-connected VPC. This enables you to connect to Atlas directly from your on-premises data center without adding public IP addresses to the Atlas IP access list.
This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.