Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added public ip doc. #13

Open
wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Added public ip doc. #13

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
0469f62
Added public ip doc.
prithage Dec 18, 2024
fcf6244
Updated as per comments
prithage Dec 19, 2024
c1380ec
wip
prithage Dec 19, 2024
e00855d
Updated doc
prithage Jan 22, 2025
5affa94
wip
prithage Jan 22, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions docs/integrations/index.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,7 @@ You must be assigned the tenant or organization **Owner** role to create, modify
## Related links:
| | | |
| ------ | ------------- | ------------- |
| Public IP Addresses | [Docs](https://turbot.com/pipes/docs/integrations/public-ip) | |
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's try moving this to Reference -> Public IP Addresses?

@johnsmyth thoughts?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agree @MichaelBurgess - I would put it in the reference section somewhere

| AWS organizations | [Docs](https://turbot.com/pipes/docs/integrations/aws) | [Announcement & demo](https://turbot.com/pipes/blog/2024/07/aws-org-sync) |
| Azure tenants | [Docs](https://turbot.com/pipes/docs/integrations/azure) | [Announcement & demo](https://turbot.com/pipes/blog/2024/07/azure-tenant-sync) |
| GCP organizations | [Docs](https://turbot.com/pipes/docs/integrations/gcp) | [Announcement & demo](https://turbot.com/pipes/blog/2024/07/gcp-org-sync) |
Expand Down
25 changes: 25 additions & 0 deletions docs/integrations/public-ip.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
# Pipes' Public IP Addresses
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If we're already in the Pipes docs, do we need Pipes' here?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah it wasn't necessary, removed Pipes'


## **Overview**
This document provides a list of public IPs used by Pipes for outbound requests. These IPs are intended for end-users to configure whitelisting, firewall rules, and integrations with external services.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are these for inbound, outbound or both?

Also, would just be end users?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, the ips are for both inbound and outbound requests, fixed it. Also changed end-users to end users


## **Public IPs**
#### **1. Load Balancer IPs**
The following IPs are used by Pipes' load balancers. Please ensure these are whitelisted for access to our services:

| **Load Balancer Name** | **Static IP Address** | **Ports** |
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

General comments:

  • Should these be /32 CIDRs?
  • Please line up the markdown across the row cols

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

General practice is to use /32 so updated the doc with the same.

|------------------------------|---------------------------|---------------|
| Main Service | 34.86.218.179 | 80, 443 |
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What is Main Service? Is this API, or something else?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah! This is the main load balancer that redirects traffic from our application url to our services.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a better name than Main Service?

| Database Proxy | 34.145.175.31 | 9193 |
Copy link

@MichaelBurgess MichaelBurgess Dec 18, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Probably best to be more Pipe-specific? Steampipe DB or Steampipe DB Proxy?

Copy link
Author

@prithage prithage Dec 19, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Makes sense. Updated to Steampipe Database

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The DB and dashboard IPs are really per hive; we just happen to only have one hive at present. It may be more accurate to look them up for your individual workspace. For example, you can get your database host from the Steampipe query tab by clicking the info button, eg, myorg-workspace.usea1.db.pipes.turbot.com. The dashboard endpoint is the same as the db, replacing the .db segment with .dashboard, eg myorg-workspace.usea1.dashboard.pipes.turbot.com.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would not call these "load balancer IPs" - that's not really relevant to the end user. Note that the scope is different - what you call Application Endpoint is the pipes.turbot.com console and API endpoint, and it's global for everyone. Steampipe Database and Powerpipe Dashboard are for your workspace and could vary from one workspace to the next (eventually).

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@prithage perhaps have a chat with @johnsmyth on this to get the required path for updates?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

replace application endpoint to turbot pipes ui (pipes.turbot.com) - add in description about custom tenant
steampipe dashboard - endpoint to postgres - eg
powerpipe dashboard web socket - eg

replace load balancer (inbound to us not them) and nat gateway (outbound to us) to connect to pipes and connect pipes to your services

| Dashboard | 34.85.232.246 | 80, 443 |
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As above - Powerpipe Dashboard or Powerpipe Dashboard Proxy?

Copy link
Author

@prithage prithage Dec 19, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated to Powerpipe Dashboard


These IPs are static and will not change.

#### **2. NAT Gateway IPs**
The following IPs are used for outbound traffic from Pipes to external services:

| **Static IP Address** |
|---------------------------|
| 35.194.64.40 |
| 34.150.247.248 |
| 34.150.238.109 |
Loading