Security & Networking — Define Once, Enforce Fleet-Wide
Apply firewall rules to every VM the moment you save them. Isolate networks, manage floating IPs, and control access from one panel.
Create reusable rule sets, bind them to interfaces, and rules take effect immediately.
Segment traffic with private networks and custom address ranges.
Assign additional public IPs and reassign between VMs instantly for failover and blue-green deploys.
Manage PTR records for clean email delivery and correct reverse lookups.
Lock down your fleet with one policy
Define firewall policies once, then apply them to every VM that needs them. For a managed firewall that Togglebox maintains, see Network Security. Need to automate rule updates across your fleet? Use the Cloud VPS API.
One security group, enforced across every VM attached to it. Update the rule set once and all members reflect the change instantly, with no per-VM steps.
- Build a new group from scratch or clone an existing one to keep staging and production in lockstep
- Attach a group to any network interface so one policy can protect multiple VMs at once
- Add, modify, or remove individual rules; changes take effect immediately
- Manage firewall assignments directly from a VM’s networking panel
Choose the right control for the job
Use security groups to push the same port policy across multiple VMs. Use private networks to keep internal traffic (app-to-database, cache-to-app) off the public internet. Use public IP controls for cutovers, failover, or mail-safe DNS.
Security Groups
Start here when the same inbound and outbound rule set should protect multiple VMs. Clone one group across web, app, or staging fleets and update it in place.
Private Networks
Use a private network when app, cache, and database traffic should never touch the public internet. Define the CIDR range and DNS resolver settings to match your internal layout.
Floating IPs & PTR Records
Use public IP controls when you need blue-green cutovers, failover moves, or clean forward/reverse DNS alignment for mail and hostname validation.
Move IPs without breaking DNS
Assign additional public IPs and move them during cutovers. Reverse DNS stays aligned so operational changes do not cause downtime or mail-delivery problems.
Floating IPs
Assign additional public IPs to any VM and reassign them between machines instantly, with no DNS propagation wait. Useful for blue-green deploys, maintenance windows, and failover drills.
Network Interfaces & Reverse DNS
Attach, detach, and swap NICs between VMs. Set PTR records per IP so forward and reverse DNS match, which is critical for outbound mail delivery.
Common Questions
Can I manage SSH keys and network security from one control panel?
Yes. The control panel includes SSH key management alongside account-level and VM-level security group operations, all in one interface.
How do security groups work?
Security groups are reusable rule sets you create at the account level. You edit rules in a dedicated editor, then bind groups to VM network interfaces. Changes are staged and committed explicitly.
Can I clone security group policies?
Cloning duplicates an existing group and its rule set, so you can adapt policies for new environments without starting from scratch.
Does the platform support private network segmentation?
Yes. Create private networks, manage address ranges, configure DNS resolvers, and control IP assignment methods for segmented internal communication.
Can I move IP aliases between VMs?
IP alias controls let you add, remove, and move aliases between VMs. NIC operations also support attach, detach, and swap actions with eligibility checks.
How is reverse DNS managed?
PTR records can be listed, set, and deleted from the control panel. Reverse DNS management is available when DNS capability is active for your service.
No matching questions found.
Ready to deploy?
$200 in credit for new accounts. Deploy in under 60 seconds.
Need a custom quote? Talk to an engineer.