IP of my railway deployment
Heyo there! I'm trying to connect a database instance I have hosted elsewhere, to my nodejs application hosted on railway. I need to whitelist the IP of my app, how do I find it?
46 Replies
Project ID:
4b66c0f6-c8d5-4416-b0fb-9edcba8f09324b66c0f6-c8d5-4416-b0fb-9edcba8f0932
use this tool
https://utilities.up.railway.app/lookup
what exactly does it do?
gives you the ranges for your region
goated tool btw
ic but how do i find my region🧐
think you can just plop your instance's deployment domain thingy in there
and it will pull the ip ranges
read what the site says lol
the problem is that i don't have a url and don't know how to find the other two
you don't know the domain of your service???
doesn't have one
make one then lol
like quite literally
i wanted to avoid that lol but alr
i can remove it after anyway i think
there you go, all 27 ip ranges
in cidr format
cool ty
what is the initial 104.196.232.237?
is that not the public ip of the server?
the current IP, it could change at any time, don't use it
ah ok
use the 27 cidr ranges
what exactly r the 27 ip ranges?
like i see them
but what do they mean
services on railway don't have static ip's, and they're hosted on Google cloud, so any deployment you make could fall into any one of those 27 cidr ranges
too much explaining, watch a YouTube video please
ic
so basically those ips are all the possible public ips that it could be
no, they're ranges
it's a CIDR range
alr im going to do some googling
i thouht a cidr range is range of ips
think if you tally them up it will be approximately a few million unique IPs
27 ranges, but there's hundreds of possible ips, that's why cidr ranges are provided
dang
okay yeah Jackson is definitely closer
ok
makes sense
buy doesn't this mean
that someone who's has one of those ips
can access my service🧐 ?
um you have a public domain now
discord-timed-message-production.up.railway.app
yes
so yes people can access
sorry
meant
anyone with those ips can access my db
all ips on the internet are usually scraped and botted, i wouldn't rely on not having a domain for security via obscurity
no, there would be a username and password
but why does the db ask for an ip in the first place then?
ask the database host that
that's something with your db, they want to whitelist a certain IP or range of IPs to allow communication from
can't spam a database with password attempts if you can't connect to it, is the idea
ahh that makes sense
ok cool
ty guys
railway discord's always v helpful!
🙏
brody is on top
lookup rewrite coming soon™️
also smth interesting, i just counted the number of ranges it gives and it's 26, not 27
counted multiple times
lmfao
used this too
https://www.tools4noobs.com/online_tools/count_lines/
you right
thank you very much
my bad