Codefresh IP addresses

How to allowlist the IP addresses of the Codefresh platform

Access to Kubernetes clusters behind strict firewalls not accessible from the public internet is governed through authorized IP addresses. Codefresh provides a list of IP addresses to be configured on clusters to allow access to them.

You can register multiple external clusters to the Codefresh Runner and GitOps Runtimes. All Runtimes require Codefresh platform IPs to be configured on the clusters.
In addition, managed clusters registered to Hosted GitOps Runtimes must be configured with a set of specific IP addresses to authorize access.

Codefresh platform IPs (updated January 2023)

All the IPs are NAT gateways, and need to enable specific IPs instead of ranges.

If you do use these IPs, we strongly recommend that you monitor this page on a regular basis.

  • 107.21.238.215
  • 18.209.185.91
  • 18.215.207.215
  • 18.233.130.31
  • 18.210.174.176
  • 23.20.5.235
  • 3.232.154.67
  • 34.192.31.53
  • 34.193.111.98
  • 34.195.17.245
  • 34.196.33.69
  • 34.198.38.4
  • 34.200.163.76
  • 44.238.236.43
  • 44.234.209.117
  • 44.239.141.205
  • 44.228.66.171
  • 44.238.167.159
  • 44.237.63.217
  • 52.6.148.44
  • 52.73.90.9
  • 52.72.0.154
  • 52.73.76.60
  • 3.228.62.77
  • 44.205.132.73
  • 34.235.30.144
  • 54.160.88.80

We have a plain text version of the IP addresses. Recommended for monitoring changes.

Codefresh IPs for Hosted GitOps Runtimes

  • 34.207.5.18
  • 34.232.79.230
  • 44.193.43.5

API access to IPs for clusters

Clusters must be configured with API access to the authorized Codefresh IPs.
If you haven’t configured your clusters with the required IPs, use the links below to complete the configuration for the clusters listed:

AKS (Azure Kubernetes Service)

EKS (Amazon Elastic Container Service)

GKE (Google Kubernetes Engine)

Codefresh Runner installation Set up a Hosted GitOps Runtime
Install Hybrid GitOps Runtimes