Use DigitalOcean's firewall or Iptables (I saw that DO has rule limits)

I noticed on here that each rule can only have up to 50 rules incoming and outgoing, and so I’m trying to figure out my options in terms of scaling IP whitelisting.

For example, I have a droplet that many customers are going to have access to and I’m looking to automate the whitelisting configuration. However, if I understand correctly, after adding 50 IPs to the whitelist, I cannot add anymore? Is that accurate?

If that’s the case, should I just simply allow everything on DigitalOcean’s firewall and just control the IP whitelisting on the actual system itself?


Or does this mean I can have 1 rule (let’s say allow 80 incoming), but there’s no limit on the number of single IPs?

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.


Yes I believe that you are correct, you need to add 1 rule for port 80 and then you can add multiple IPs as the source.