Is it currently possible to restrict the source IPs that are allowed to access my confluent cloud cluster that uses public internet networking?
1 Like
I am having the same question, please let us know if that feature is available in Cloud Confluent?
1 Like
Hi,
You can access the basic and standard clusters over the public internet. However, you won’t be able to whitelist IP addresses for public Confluent Cloud clusters.
Also, currently, ingress IPs are not static. The cloud infrastructure that is used by Confluent Cloud does not guarantee static IPs across cluster changes, DNS is used to provide a consistent address.
The underlying IPs may be stable for some period of time, but are subject to change at any time, so they should not be relied upon for any use.
Please refer:
FAQ for Confluent Cloud | Confluent Documentation
Just coming back to this. Not sure my question was understood. I am asking about the IPs of the clients connecting to Confluent Cloud. I’d like to only allow clients from certain IP ranges to connect. IP filtering would be a great improvement to public clusters. Any movement on this?
Update: it looks like it’s supported for the Confluent cloud API but not yet for Kafka clients:
Right, Kafka client ingress IP filtering for public endpoint clusters is not currently supported, but this is a feature that we are actively investing in building out. If you have a Confluent account team that you are working with, you may reach out to them to get the latest updates on the feature.