How Mendix Customers Use NetFoundry for Private Connectivity Without VPNs

NetFoundry | How Mendix Customers Use NetFoundry for Private Connectivity Without VPNs

Mendix accelerates application development and provides rich functionality for operations and security.  Mendix Public Cloud does not support VPN-based private networking because VPNs are more pain than they are worth.  This is why Mendix and NetFoundry have partnered to give Mendix customers a private networking option which is simple and software-only.

Mendix customers can now add private networking directly into their Mendix-powered software to secure interactions between Mendix applications and resources such as databases, APIs, or third-party services (instead of the public network options to secure outgoing connections). The private connectivity includes built-in authentication, authorization, mTLS, E2E encryption, MFA and posture. This is available today and in addition the private connectivity solution will be turned into a Mendix-supported module in the Mendix marketplace, allowing developers to incorporate secure, invisible connections with minimal hand-coding, leveraging visual modelling and a robust set of tools.

For now, the Mendix developer adds NetFoundry code to their Mendix application (example below), and that code controls the private networking, with all the functionality provided as turnkey SaaS.  The Mendix customer gets a private network connection, embedded into the app, without managing a private network.

This makes it simpler and quicker for Mendix customers to connect with the Mendix cloud – enterprises no longer need to open up ports, whitelist IP addresses, or deal with proxies and certificates:

Topic
Before NetFoundry
After NetFoundry
Private Connections
Not available
Turnkey SaaS
Enterprise WAN Integration
Firewall ACL management
No firewall ACL management
Security and Compliance
Public connections
mTLS, E2E encryption, posture, least privileged access, telemetry, audit logs
Quality and Reliability
Internet-dependent
Dynamic latency optimization, load balancing, and HA
Enterprise Network Exposure
Enterprise DC & cloud firewalls are open
No open inbound firewall ports

If you want to learn more, get a demo or spin up your own sandbox for free, please contact NetFoundry.  The following section shows a working example.

How NetFoundry Enables Mendix Low-Code Developers to Embed Simple, Private Connectivity as Software

Using the NetFoundry SDKs, Mendix developers can establish private connections for any protocol to ensure support for any use case. Our example connects the Mendix application to a database in the enterprise cloud or private data center, using the NetFoundry Java SDK and our ZDBC driver, which apps use to access databases and other sensitive resources without exposing network endpoints.  The result is simple, private connectivity from the Mendix Cloud to anywhere, without any inbound ports, complex firewall rules, public DNS, and more:

NetFoundry | Mendix Public Cloud

After exporting the project to Eclipse:

  1. Add the NetFoundry Java SDK library to “userlib” (“ziti-x.x.x-full.jar”).
  2. Then add this code:
NetFoundry | Ziti Java

And just like that, a secure connection to our database, no open ports, no client installed, easy low-code zero trust connectivity.

Building a Secure, Scalable Future for Mendix and Low-Code Applications

Mendix and NetFoundry made private connectivity for low-code apps simple and powerful. If you would like to learn more, get a demo or spin up your own connection for free then please contact us anytime.

Get the latest NetFoundry 
News & Insights