Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is it possible to whitelist Heroku apps?

Tags:

heroku

whitelist

I have a Heroku application that binds with a telco sms gateway via SMPP The telco guys need to whitelist IPs for my app to connect. I am aware of the new addon proximo, but it's just insanely priced. So that option is out. Is there a subnet or a list of IPs that I can get whitelisted and is there a guarantee that all requests from my app will originate from tose IPs? I found this https://api.heroku.com/vendor/logplex/allowlist. Is that only for syslog or all apps make a request from one of those IPs?

Thanks

like image 609
gsin Avatar asked Aug 18 '12 11:08

gsin

2 Answers

You can host a proxy yourself using Dockhero Heroku add-on - https://dockhero.io/ - which has a static IP (AWS elastic IP).

  1. Install the add-on and the CLI plugin:

    $ heroku addons:create dockhero
$ heroku plugins:install dockhero

  2. Wait until the provisioning is done and get DOCKHERO_HOST environment variable

    $ heroku dh:wait
$ heroku config:get DOCKHERO_HOST
--> e.g. dockhero-spherical-42047.dockhero.io

  3. Create dockhero-compose.yml file with the following contents:

    version: "2"
services:
  proxy:
    image: tecnativa/tcp-proxy
    environment:
      LISTEN: ":80"
      TALK: "www.wikipedia.org:80"
    ports: 
      - "80:80"

Here www.wikipedia.org:80 is the server which you build a proxy for. Find more about the syntax in https://docs.docker.com/compose/compose-file/compose-file-v2/

  1. Run this stack in the cloud using Dockhero CLI:

    $ heroku dh:compose up -d

  2. Any requests to the host from DOCKHERO_HOST Heroku config var will now be proxied according to your dockhero-compose.yml

    $ curl http://dockhero-spherical-42047.dockhero.io/
--> <response from www.wikipedia.org>

IMPORTANT: as of writing this, dockhero.io is in Beta and available for free. When switching to production, the assigned IP may be changed after a prior notification.

like image 114
user670908 Avatar answered Sep 21 '22 13:09

user670908

Fixie is another alternative add-on not mentioned here. Free plan with 500 requests per month. Requires some adjustments in code and heroku app to be in us region (or you can migrate it: Migrating an Application to Another Region). Worked for me.

like image 21
kostek Avatar answered Sep 21 '22 13:09

kostek
Sign in to Comment

Related questions

How to add a Spacy model to a requirements.txt file?
heroku cli login showing wrong account info
Unable to connect to Heroku API, please check internet connectivity and try again
heroku node app exits after idling
How to run Procfile with multiple commands on Heroku?
Heroku "Process exited with status 137" node.js app
Heroku Upload - Could not find a version that satisfies the requirement anaconda-client==1.4.0
How to enable contrib modules on Heroku Postgres database
Heroku: docker deploy throws unauthorized: authentication required
Heroku : tensorflow 2.2.1 too large for deployment
Express.js redirect to HTTPS and send index.html
How do I retrieve a git repository from Heroku?
Blank page on Heroku - mean.js angular app
Knex Heroku Error: self signed certificate
Heroku Cedar: How to scale WEB dynos based on time of day
Flask app dont start on heroku server
How to add .env file or otherwise set environment variables in a Heroku app?
Is Heroku dependable?
Heroku apps automatically redirected to HTTPS
error: RPC failed; result=22, HTTP code = 400

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!