By heldrida
Hi,
I found that the App Platform does not support fixed IP addresses, which I require to whitelist.
The service is a VPS in Digital Ocean, and I need to allow the App Platform Container to access it.
I use:
sudo ufw allow from xxx.xxx.xxx.xxx to any port yyyyy
Does DigitalOcean have a range of IP addresses I can at least use to whitelist via UFW, please?
Just to be clear, I understand I can open the port from anywhere:
sudo ufw allow PORT_NUMBER/tcp
But this is not good…
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Hi @heldrida,
I don’t recommend whitelisting DigitalOcean’s IP range or for that matter, any IP range unless the service you are using doesn’t specifically say so.
Whitelisting so much IP addresses can be seen as a security risk as not all of these IPs would be yours to use and from these IP addresses your App would be reachable.
Having said that,
App Platform applications do not have a persistent IP address. Due to dynamic nature, there is no confined IP address that is dedicated for App Platform.
Refer to the limitations on the product:
Hi there,
Quick update here, you can now add dedicated egress IP addresses to your apps on App Platform. Dedicated egress IP addresses allow your app to connect to resources outside of DigitalOcean using a publicly available static IP address.
Dedicated egress IP addresses are a paid feature that allows your app to connect to resources outside of DigitalOcean using a static IP address and allow you to restrict external resources to receive only outgoing traffic from your app. Dedicated egress IP addresses persist through redeployments but are removed from the app if you disable the feature or the app is destroyed.
You can add a dedicated egress IPs to your app after you deploy the app. To do so, in the DigitalOcean Control Panel, go to the Apps page and click your app. Click the Settings tab, scroll to the Dedicated Egress IP Addresses section, and then click the Edit button beside the section.
In the Edit menu, click the Add Dedicated Egress IP button. This assigns two IP addresses to your app and triggers a redeployment.
To remove a dedicated egress IP address, in the same Edit menu, click Release Dedicated Egress IPs. This removes the IP addresses from the app and triggers a redeployment. Once IP addresses have been released, the same addresses cannot be re-added to the app.
Hope that this helps!
Best,
Bobby
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and AI-native businesses
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.