IP Access Control

​

Overview

• Restrict access to Honeydew to specific IP addresses or ranges
• Enhance security by preventing unauthorized access from unknown locations
• Comply with corporate security policies and regulatory requirements
• Protect against potential security threats from unauthorized IP addresses

​

How It Works

1. Access Validation: All requests to Honeydew (Honeydew Studio, JDBC proxy and API) are validated against the allowed IP addresses
2. Blocked Requests: Requests from unauthorized IP addresses are automatically blocked
3. Audit Trail: All access attempts (both successful and blocked) are logged for security monitoring
4. Real-time Enforcement: IP restrictions are enforced immediately upon configuration

​

Supported Access Methods

• Web Application: Browser-based access to the Honeydew interface
• API Access: All API endpoints including GraphQL API
• JDBC Proxy: Connections from BI tools and other integrations
• Bots: Teams, Slack and other bot integrations
• Snowflake Native App: Access through the Snowflake Native Application

​

IP Address Formats

​

Single IP Addresses

192.168.1.100
10.0.0.50
172.16.0.25

​

IP Address Ranges (CIDR Notation)

192.168.1.0/24    # All IPs from 192.168.1.0 to 192.168.1.255
10.0.0.0/16       # All IPs from 10.0.0.0 to 10.0.255.255
172.16.0.0/12     # All IPs from 172.16.0.0 to 172.31.255.255

​

Multiple IP Addresses/Ranges

​

Setup Instructions

​

Prerequisites

1. Admin Access: You must have Admin role permissions in Honeydew
2. IP Address Information: Collect the IP addresses or ranges that should have access
3. Network Planning: Identify all locations and services that need access to Honeydew

​

Configuration Steps

1. Contact Support: Reach out to support@honeydew.ai to enable IP Access Control
2. Provide IP Addresses: Submit the list of allowed IP addresses or ranges
3. Testing Period: Work with support to test access from authorized locations
4. Activation: Once testing is complete, IP Access Control is activated

​

Adding or Removing IP Addresses

1. Contact support@honeydew.ai with the updated list
2. Include the specific IP addresses or ranges to add or remove
3. Changes are typically applied within 24 hours

​

Common Use Cases

​

Corporate Office Access

10.0.0.0/8        # Corporate network
192.168.1.0/24    # Office subnet

​

Remote Work with VPN

203.0.113.0/24    # VPN gateway range
198.51.100.0/24   # Additional VPN range

​

Cloud Infrastructure

172.16.0.0/12     # Cloud provider range
10.100.0.0/16     # Data center range

​

Third-Party Integrations

52.84.0.0/15      # AWS region
35.184.0.0/13     # Google Cloud region

​

Integration with Other Security Features

​

Authentication Methods

• SSO: IP restrictions apply regardless of authentication method
• API Keys: API key access is also restricted by IP address
• MFA: Multi-factor authentication is still required for authorized IP addresses

​

Audit and Compliance

• Access Logs: All IP-based access attempts are logged
• Compliance Reports: IP access data can be included in compliance reporting
• Security Monitoring: Integrate with your existing security monitoring tools

​

Support