Limit Node Functionality to Current Public IP

2 minute read

This security feature allows restricting node functionality to the current public IP address. If the public IP changes the data plane connectivity will cease to function and no data plane traffic will pass. It is the equivalent to disabling a node in the trustgrid portal. This feature should not be used on networks where the Public IP is controlled via DHCP. It should only be used where the public address is statically assigned to the node and is not expected to change.

Process to Restrict

Click Info in the top right corner of the page, or click the backtick key (`) to show the menu
Click the padlock button next to Public IP to lock (Do not enable if using DHCP. Static addresses only)
Click the padlock to lock the node to the current public IP address.
Public IP should now show padlock icon as locked as shown below.
Public IP is now locked to the current public IP address.

Process to Unlock

Click Info in the top right corner of the page, or click the backtick key (`) to show the menu
Click the padlock next to “Locked IP” to unlock.

Alerts

Once locked changing the Public IP of the node will result in an alert being generated as seen belo. At this point no data plane traffic will be allowed.

Alert generated when node attempts to connect from an unauthorized IP address.

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.