IP address access policy (CIDR Rules) for access to the Rescale platform can be configured. There are two scenarios:

At the Organization level, Administrators can define CIDR (IP address) Rules to allow access to the Rescale Platform (e.g., login page, load web jobs list, user profiles, access via API or CLI functionality, etc). In other words, users would be allowed to use the platform only from connections that match the organization’s Access Restriction CIDR rule(s). Typically, an administrator would define a range of IP addresses to allow access to the platform.
At the user level, for running jobs, workstations, and storage devices (i.e., any active clusterA computing cluster consists of a set of loosely or tightly ... More). This gives the user the ability to limit job access from their specific IP address when using SSH or NiceDCV access to running clusters. For example, if they only connect from one or two locations (e.g., their work office or their home office), they can configure that preference. User changes to CIDR Access rules are propagated immediately to all running instances.

Per Rescale security policy, the 0.0.0.0/0 rule is blocklisted (not allowed); this includes ‘quad 0’ and derivatives.

1. Organization Level: Platform Web UI Access Policy

At the organizational level, a platform administrator can define the CIDR rules to allow access to the Rescale platform. See this Admin article: How can an organization admin enable Rescale access from a new IP address?

2. User Level: Access Restrictions for Running (Active) Jobs (via SSH and Remote NiceDCV Sessions)

At the User Profile level: Any authenticated user can go to their User Profile > Job Settings (drop-down from upper right-hand corner in the platform UI) and modify their Access Restriction (CIDR) setting for SSH access to jobs and workstations. And also access to remote workstations via NiceDCV web and client connections.

“My Current IP” would restrict SSH and DCV access only from the IP address of the active user connection. This is the most restrictive and secure option (as it only allows access from one place).
If users need to connect to Rescale from multiple authorized locations (e.g., from the office and home office), users can define a Custom comma-separated IP range list:

If undefined, the user may not be able to complete an SSH connection. In the case of a NiceDCV session, the user will be prompted to specify the CIDR rule preference.

User changes to CIDR Access rules are propagated immediately to all running instances.

How to find your current IP Address for CIDR Rules

We recommend 2 ways to find your IP address:

Select “My Current IP” which will tell you the current IP address of your computer
Go to: https://whatismyipaddress.com/

Entering a CIDR Rule

When entering a CIDR rule, you must use CIDR notation, which includes a slash after your IP address. You must use the lowest IP address in the subnetwork, which is typically /32.

CIDR notation (“/” followed by a number) defines the size of a network or subnet in IP addressing. The number after the slash represents the number of bits used for the network portion of the address, with the remaining bits used for host addresses within that network. Common CIDR notations and their implications:

/32: Single IP address (IPv4). In IPv6, typically used for an individual interface.
/24: 256 IP addresses (IPv4), a standard “Class C” size network.
/16: 65,536 IP addresses (IPv4), a “Class B” size network.
/8: 16,777,216 IP addresses (IPv4), a “Class A” size network.
/0: Represents the entire IPv4 or IPv6 address space.

Example of Finding an IP and Entering a CIDR Rule into the “Custom” field

Let’s say I have 3 networks I use to access local SSH. I can use the “My Current IP” to find the address at each of those locations and add a custom comma-separated CIDR rule:

Home Office: 203.0.113.45/32
Work: 10.0.2.15/16
Rescale WorkstationA workstation is a powerful computer system designed for pro... More: 3.94.195.144/32

We can take all of these addresses and put them into a CIDR custom rule:

203.0.113.45/32,10.0.2.15/16,3.94.195.144/32

If you would like to automatically add CIDR rules upon job submission, contact your Rescale representative.

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
player	1 year	Vimeo uses this cookie to save the user's preferences when playing embedded videos from Vimeo.

Cookie	Duration	Description
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.
sync_active	never	This cookie is set by Vimeo and contains data on the visitor's video-content preferences, so that the website remembers parameters such as preferred volume or video quality.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_UA-32985745-1	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
utm_campaign	past	Google Ad Services sets this cookie to store session campaign value if present.
utm_content	past	This cookie is used for storing the session content value if present.
utm_source	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
utm_term	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_mkto_trk	2 years	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
personalization_id	2 years	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
utm_medium	past	This cookie is used to record from where the visitor came to the website orginally. This information is used by the website operator to know the efficiency of their marketing.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_chtbl	session	No description available.
_dtses	30 minutes	No description available.
_dtuid	10 years	No description available.
BIGipServersj30web-nginx-app_https	session	No description
email	past	No description available.
gclid	past	No description
handl_ip	1 month	No description available.
handl_landing_page	1 month	No description available.
handl_original_ref	past	No description available.
handl_ref	past	No description available.
handl_url	1 month	No description available.
li_gc	2 years	No description
muc_ads	2 years	No description
username	past	No description available.

Rescale Platform

Overview

HPC & AI Software

HPC & AI Architectures

Security & Compliance

Ecosystem Integrations

Pricing

HPC as a Service

Intelligent Batch

Elastic Cloud Workstation

Storage Fabric

Enterprise Management

Multi-Team Management

Performance Management

Software Publisher

Digital Engineering

AI Physics

Knowledge Management

Computational Pipelines