From Wikitech
Jump to navigation Jump to search

Horizon allows projectadmins the ability to manage public IP address(es) assigned to their instance(s).

Do you only need to expose a Web service? Just set up a proxy: go to Project > DNS > Web Proxies and click on the Create Proxy button. That also gives you HTTPS for free. See Help:Proxy.

Only request a public IP if you need to expose non-HTTP/HTTPS endpoints.

Request a Public IP address

Public (Floating) IP addresses are not automatically available to projects, the default quota is 0. You can find your quota on the Compute -> Overview tab in Horizon. If you want a new Public IP address, follow the Cloud-VPS (Quota-requests) project in Phabricator to make a request.

Manage Public IP address(es)

Horizon allows you to manage IP addresses for your instances.

Adding a Floating IP for the first time

  1. In 'Project -> Compute -> Instances', locate the instance you want
  2. Click the 'Associate Floating IP' action

See also: #Managing a Floating IP that was released from another instance

Removing a Floating IP

  1. In 'Project -> Compute -> Instances', locate the instance you want
  2. Click the dropdown arrow on the actions and 'Disassociate Floating IP'

After disassociating IPs from an instance, the IP will still be allocated to your project (and thus counted in your quota usage). It can be released completely or associated with another instance on the 'Access & Security -> Floating IPs' tab.

Managing a Floating IP that was released from another instance

Horizon Floating IPs tab

Once an IP is allocated to your project it remains associated even when it is not assigned to any instance. This allows you to move the same IP from one instance to another. Associated IPs are displayed on the 'Access & Security -> Floating IPs' tab. From this screen you can associate the allocated IP to another instance or release it from your project.

Add host name

You can insert an unlimited number of dns records for one public IP, however, you will need to make sure that the hosts file and server configuration are set-up to properly handle the multiple dns records pointing to your instance. DNS entries can be managed by going to 'Project -> DNS -> Domains', and clicking 'Manage Records' next to a domain. If no domains are listed or you want another domain, file a Phabricator task under the #cloud-vps project. Individual projects can no longer create domains directly under without using the web proxy.

Use the IP

To actually use the IP, you might have to add rules to the security group. The default policy is to drop all packets, so those rules add ACCEPT rules for services you need. To accept from anybody, use the CIDR range