Question

Floating IP Anchor Subnet?

Posted December 12, 2015 2.4k views
Firewall

What is the anchor ip subnet? Right now I’m losing access when using images if it changes from what I had ufw set to. What should I use to let ufw use any anchor? It’d be easy if i could use an interface but I can’t. Thanks.

To Action From

10.12.0.16 22/tcp ALLOW Anywhere

Add a comment
mrdigital
By:
mrdigital
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

1 answer
JamesMC June 23, 2016

Hello,

Can you go into a bit more detail what you are trying to do? If you are setting this up through a script, I would suggesting using the metadata to grab the anchor IP.

You can grab it with
curl http://169.254.169.254/metadata/v1/interfaces/public/0/anchor_ipv4/address
and it will return the anchor IP for the droplet. This would allow you to set this directly as opposed to setting a range that can vary based on region and other unpredictable factors.

If this doesn’t work, please go into a bit more information on what exactly you are trying to do and perhaps a more specific solution can be offered.

Edited for errors.

Reply Report
  • mrdigital June 23, 2016

    Thanks I ended up using

    10.0.0.0/11 22/tcp ALLOW Anywhere

    Reply Report
    • JamesMC June 23, 2016

      Hello,

      That will work too, just keep in mind that opens up the private IP as well (if you have it configured) as the private IP uses the same 10.* addresses. just something to keep in mind if you are also enabling private networking for the droplets.

      Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help