SnapShooter is a cloud backup and recovery solution. Use SnapShooter to back up servers, volumes, databases, and applications from DigitalOcean and other cloud providers.
We use SSH access to your servers to handle your backups. If you restrict access to your server using a firewall, you need to allow SnapShooter’s IP addresses to access your server in order for SnapShooter to function.
As of March 2021, these are SnapShooter’s IP addresses:
The port we connect to depends on the configuration you chose when you set up your backups. We currently only support the SSH protocol.
Our IP addresses may change occasionally, and we will provide notice ahead of time whenever possible.
We have retired the following IP addresses:
Remove any retired IP addresses from your firewall.
On Ubuntu and other Debian-based servers, UFW is the default firewall. To allow SnapShooter’s IP addresses through UFW, run the following command once for each of SnapShooter’s IP addresses, substituting the IP address:
ufw allow from USE_SNAPSHOOTER_IP_ADDRESS to any port ssh
On RHEL, Fedora, CentOS, Rocky Linux, and Alma Linux servers, Firewalld is the default firewall. To allow SnapShooter’s IP addresses through Firewalld, run the following command once for each of SnapShooter’s IP addresses, substituting the IP address:
firewall-cmd --zone=ssh-access --add-source=USE_SNAPSHOOTER_IP_ADDRESS --permanent
Next, add the SSH service and reload the configuration:
firewall-cmd --zone=ssh-access --add-service=ssh --permanent firewall-cmd --reload