Returns hostnames and port numbers for AWS PrivateLink and Azure Private Link deployments to add to your firewall’s allowed list so that you can access Snowflake from behind your firewall.
The output of this function can then be passed into the SnowCD to diagnose and troubleshoot your network connection to Snowflake.
Typically, Snowflake customers use a firewall to prevent unauthorized access. By default, your firewall might block access to Snowflake.
To update your firewall’s allowed list, you need to know the hostnames and port numbers for your Snowflake account, stages, and other other hosts used by Snowflake.
For more details about allowed lists for the Snowflake clients you use, see Allowing Hostnames.
The data type of the returned value is VARIANT. The value is an array of JSON structures. Each JSON structure
contains three key/value pairs:
Currently, there are 5 possible types:
SNOWFLAKE_DEPLOYMENT: Hostname and port number information for your Snowflake account.
STAGE: Location (Amazon S3, Google Cloud Storage, or Microsoft Azure) where files that the Snowflake client can read or write are stored.
SNOWSQL_REPO: Endpoint accessed by SnowSQL to perform automatic downloads/upgrades.
OUT_OF_BAND_TELEMETRY: The hosts to which drivers report metrics and out-of-band incidents such as OCSP issues.
OCSP_CACHE: Snowflake-provided alternative source of OCSP certificate information in case the primary OCSP responder cannot be reached. Most of the latest versions of the Snowflake clients access the OCSP cache rather than connecting directly to the OCSP responder.
Specifies the full hostname for type (e.g. "xy12345.east-us-2.azure.snowflakecomputing.com", "ocsp.snowflakecomputing.com").
Specifies the port number for type (e.g. "443", "80").