This message was deleted.
# opals
Slackbot
02/10/2023, 8:26 PMThis message was deleted.
o
Or Weis
02/10/2023, 9:00 PMHi @Tim Lopez, not sure what you mean .
For clients to talk to the OPAL server?
You can set that up with iptables or a similar tool.
Or Weis
02/10/2023, 9:01 PMBut better yet connections can be protected by security tokens
t
Tim Lopez
02/10/2023, 9:02 PMSpecifically for the PDP container -- as I understand it that container needs to be able to talk over the internet to the permit.io API (please correct me if I'm wrong). Ideally instead of allowing outbound access to the entire internet, we would like to restrict that container's access only to the permit.io servers. Is this use accounted for?
o
Or Weis
02/10/2023, 9:05 PMOh you're in the wrong channel - questions about Permit go at #C02RTML2WNN.
The connection to permit.io is protected by SSL certificates a much more secure way for outgoing connections. (Ip addresses can be spoofed, and intercepted with man-in-the-middle attacks)
We don't currently offer static ips to connect to Permit. We can consider offering those as part of an Enterprise tier engagement.
t
Tim Lopez
02/10/2023, 9:07 PMApologies! That's fine, I will note this down and absorb the risk, and note down the potential Enterprise tier engagement.
o
Or Weis
02/10/2023, 9:08 PMNo worries at all. Happy to provide more information as needed :)
2 Views