Configure IP Access

By default, each new Hydrolix cluster restricts network IP access. This limits connectivity to Hydrolix endpoints, including the Ingest Streaming API and the Query API. Hydrolix sets these IP access restrictions directly in Kubernetes network policy.

Public Cluster

To allow access from any IP address, use the wildcard 0.0.0.0/0 in the ip_allowlist field of your cluster configuration:

apiVersion: hydrolix.io/v1
kind: HydrolixCluster
metadata:
  name: hydrolix
  namespace: hydrolix
spec:
  admin_email: admin@email.com
  db_bucket_url: gs://hydrolix-demo
  env: {}
  hydrolix_url: https://demo.hydrolix.net
  ip_allowlist:
  - 0.0.0.0/0
  kubernetes_namespace: hydrolix
  overcommit: false
  scale: {}
  scale_profile: minimal

Limited Access Cluster

To limit access to a set of specific IP addresses, specify those addresses in ip_allowlist field of your cluster configuration in CIDR notation (e.g. 12.13.14.15/32, 100.10.1.0/16):

apiVersion: hydrolix.io/v1
kind: HydrolixCluster
metadata:
  name: hydrolix
  namespace: hydrolix
spec:
  admin_email: admin@email.com
  basic_auth:
  - version
  db_bucket_url: gs://hydrolix-demo
  env: {}
  hydrolix_url: https://demo.hydrolix.net
  ip_allowlist:
  - 23.235.32.0/20
  - 43.249.72.0/22
  - 103.244.50.0/24
  kubernetes_namespace: hydrolix
  overcommit: false
  scale: {}
  scale_profile: minimal