IP Address Assignment
When using a Virtual Private Gateway, several types of IP addresses are used and assigned. Understanding these IP addresses and their assignment methods is essential for proper VPG configuration and capacity planning.
IP Address Types
| IP Address Type | Description |
|---|---|
| VPG IP Address | The source IP address used when the VPG sends packets to your system over a private network connection. |
| VPG Global IP Address | The public IP address used for the VPG's Internet gateway. |
| Device IP Address | The private IP address assigned to Air for Cellular and Arc devices connected to the VPG. |
VPG IP Address
The VPG IP address is the source IP address used when the VPG sends packets to your system over a private network connection (such as when using Soracom Canal, Direct, or Door).
| Item | Details |
|---|---|
| IP Address Range | 100.64.0.0/10 (Shared Address Space RFC 6598). The actual IP address range assigned to a specific VPG can be viewed in the VPG IP Address Range field on the VPG settings screen. For more information, refer to VPG Type-E Configuration, Type-F Configuration, Type-G Configuration, or Type-F2 Configuration. |
| Assignment Method | Automatically assigned. You cannot specify a particular IP address. |
| IP Address Persistence | Once assigned, the IP address will not change until the VPG is deleted. |
VPG Global IP Address
The VPG global IP address is the public IP address used for the VPG's Internet gateway.
| Item | Details |
|---|---|
| Global IP Address | For VPGs with the Internet Gateway enabled, a global IP address is automatically assigned. You can enable the Fixed Global IP Address option to assign static public IP addresses to the VPG. |
When the Internet Gateway is disabled, no global IP address is assigned. For more information, refer to the VPG Overview documentation.
Device IP Address
The device IP address is the private IP address assigned to Air for Cellular and Arc devices connected to the VPG.
| Item | Details |
|---|---|
| IP Address Range (Device Subnet IP Address Range) | By default, 10.128.0.0/9 is used. Device IP addresses are selected from this IP address range. The device subnet IP address range can be specified when creating a VPG. For information about the available ranges, refer to the CIDR Range for device subnet parameter in VPG Type-E Configuration, Type-F Configuration, Type-G Configuration, or Type-F2 Configuration. |
| Assignment Method | By default, IP addresses are automatically assigned. For each device, an IP address candidate is determined based on a predefined algorithm, and an available IP address from the device subnet IP address range is assigned to the device. You can assign a specific IP address to each device by IMSI using the IP address map option in the Device LAN tab of the VPG settings screen. For more information, refer to IP Address Mapping. When using Soracom Gate, you can access devices using their assigned IP addresses. |
| IP Address Persistence | Once an IP address is assigned to an IMSI (or primary IMSI), that IP address will only be used by that IMSI unless the user explicitly changes the configuration via IP Address Mapping. |
Device Subnet Capacity Planning
Why Sufficient IP Address Space Is Important
Once an IP address is assigned to an IMSI (or primary IMSI), that assignment is permanent and the IP address will only be used by that specific IMSI. The IP address remains reserved for that IMSI even when the device is not connected.
If the device subnet IP address range is too small, new SIMs that do not yet have an IP address assigned in the VPG will fail to create connections. This is because all available IP addresses in the range are already permanently assigned to other IMSIs.
Recommendations
To avoid IP address exhaustion:
- Use the default device subnet range - The default
10.128.0.0/9range provides over 8 million IP addresses, which is sufficient for most deployments. - Plan for total SIM count - If you must use a custom device subnet range, ensure it is large enough to accommodate the total number of SIMs that will ever use this VPG, not just the number of simultaneously connected devices. Remember that IP addresses remain permanently assigned even when devices are offline.
- Monitor usage - Regularly check the total number of SIMs that have been assigned IP addresses in this VPG, not just the number of active sessions, to understand actual IP address consumption.
- Use IP Address Mapping - If you prefer to manually assign specific IP addresses rather than rely on the VPG’s predefined algorithm, refer to IP Address Mapping.
The device subnet IP address range cannot be changed after a VPG has been created. If you need to expand the IP address range, you must create a new VPG with a larger range and migrate your devices to it.
Gate Peer IP Address
When using Gate, the Gate Peer is a host in your network that establishes a VXLAN tunnel with the VPG. The Gate Peer is assigned an IP address as follows:
| Item | Details |
|---|---|
| IP Address Range | Assigned from the VPG's device subnet IP address range. |
| Assignment Method | Automatically assigned. You cannot specify a particular IP address. |
| IP Address Persistence | Once assigned, the IP address will not change until the VPG is deleted. |