Welcome to Origin IP ACL

Origin IP Access Control List (Origin IP ACL) offers protection for your origin server by restricting traffic to ​Akamai​-controlled IP addresses. ​Akamai​ maintains a small and stable list of IP addresses that you use in policy rules in your origin server's firewall. These IP addresses are represented in a list using classless inter-domain routing (CIDR). CIDR is an IP addressing scheme that improves the allocation of IP addresses by using a single IP address with a prefix at the end to designate many, unique IP addresses. With Origin IP ACL, requests from edge servers to your origin will always be sourced from an address in one of these prefixes.

1. Get the IP addresses

You need to add these addresses to your origin server for access.

2. Set it up with a supported product

Get it added to your delivery configuration. Origin IP Access Control List is supported with these products:

  • Adaptive Media Delivery (AMD)
  • ​Akamai​ Direct Connect
  • API Acceleration
  • Cloud Wrapper
  • Dynamic Site Accelerator
  • Download Delivery
  • Ion
  • Object Delivery

3. Review caveats and recommendations

There are some limitations on the use of Origin IP ACL and some additional recommendations. Review these points before going live with it in your delivery workflow.