Skip to main content
Static routes
Last update:

Static routes

Static routing can be used if there is a device on the cloud subnet that acts as a router. For example, global router, cloud router, or cloud server.

Static routes can be configured:

  • from the private subnets;
  • subnets of the global router;
  • subnets of cross-project networks — only through OpenStack CLI;
  • public subnets — only through the OpenStack CLI.

Examples of solved problems

Internet access for a network connected to a global router

For example, a cloud private network is connected to a global router and you need to:

  • configure internet access for the cloud servers that reside on this cloud private network;
  • configure internet access for the Managed Kubernetes cluster private network to deploy nodes;
  • Use the public address for a cloud server or for a load balancer on a private network;
  • Use the cloud router as a gateway to access the internet for servers or hosts from other pools and services.

Sending traffic via cloud server (proxy)

If you need to send traffic to other networks, you can use the cloud server as a gateway and configure static routing. For example:

  • configure access to the Internet from a subnet;
  • configure connectivity to the external infrastructure via VPN.

Configure static routing

  1. Create static routes.
  2. Write static routes on cloud server.
  3. Modify cloud server network configuration files.
  4. Write static routes on Managed Kubernetes cluster nodes.
  5. Write static routes in a cloud database cluster.
  6. Optional: write-static-routes-on-cloud-load-balancer.

1. Create static routes

You can use as the source subnet:

  • a private subnet;
  • subnet of the global router;
  • subnet of cross-project networks — only through OpenStack CLI;
  • public subnet — only through the OpenStack CLI.

You cannot set a metric (route weight or cost) for a static route, so you cannot create two or more routes with the same source subnet and destination subnet.

  1. In Control Panel, go to Cloud PlatformNetwork.
  2. Open the Private Networks tab.
  3. Open the private network card → Static Routes tab.
  4. Press Create Route.
  5. Select the source subnet. You can select a private subnet or a global router subnet.
  6. Enter the CIDR of the destination subnet, which is the subnet to which traffic will be routed.
  7. Enter the gateway (next-hop), which is the IP address through which all cloud servers from the source subnet will route traffic to the destination subnet. You can enter any source subnet address.
  8. Press Add.

2. Write static routes on the cloud server

If there are cloud servers in the source subnet, after creating a static route, you need to update the routing rules — write routes on all cloud servers in the subnet. The algorithm depends on whether DHCP is enabled on the source subnet.

  1. See if the source subnet's DHCP is enabled. In Control Panel, go to Cloud PlatformNetwork. Open the network card → Subnets tabDHCP toggle switch.
  2. Configure static routes depending on whether DHCP is enabled or disabled on the source subnet:

If DHCP is enabled on the source subnet, static routes will be automatically written to the servers within 24 hours after the routes are created.

write routes at once

You can write routes all at once, use one of the options:

  • sequentially turn cloud server off and on;

  • re-request information from the DHCP server on the cloud server:

    dhclient eth0

    Here eth0 is the interface name.

    New routes will be added without deleting old routes;

  • turn off, turn on the port, and re-request information from the DHCP server on the cloud server:

    INTERFACE=eth0; ip link set $INTERFACE down && ip link set $INTERFACE up && dhclient $INTERFACE

    Here eth0 is the interface name.

    New routes will be added without deleting old routes.

3. Modify cloud server network configuration files

You must manually assign static routes to a cloud server on the source subnet if DHCP is disabled on the subnet and:

  • cloud server is created from an image without cloud-init or cloudbase-init agent;
  • Before creating a static route on the source subnet, a cloud server was created from a cloud-init or cloudbase-init agent image, with Manual in the network configuration file on the server specified in the Port Configuration block of the server.

If you enable DHCP on a subnet in the future, the writed static routes may no longer work — DHCP applies its own settings to all servers.

  1. Connect to server.

  2. Open the CLI.

  3. Disable network configuration. To do this, create the 99-disable-network-config.cfg file:

    echo "network: {config: disabled}" >> /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg
  4. Open the configuration file:

    vi /etc/network/interfaces.d/50-cloud-init.cfg
  5. At the end of the data block of the corresponding network interface, add the desired route:

    up route add -net <ip> netmask <netmask> gw <gateway>


    • <ip> is the subnet to which the route is needed (for example,;
    • <netmask> is the subnet mask to which the route is needed (for example,;
    • <gateway> is the gateway for the current server's subnet, which is specified on the global router.
  6. If you need to write multiple routes, add them sequentially in the same block.

  7. Reboot server.

4. Write static routes in a Managed Kubernetes cluster

If the source subnet has Managed Kubernetes cluster nodes, after creating a static route, update the routing rules — sequentially disable and enable all cluster nodes.

5. write static routes in a cloud database cluster

If the source subnet has a cloud database cluster, update the routing rules after creating a static route:

6. Optional: write static routes on cloud load balancer

If the source subnet has cloud load balancers and static routing is needed for your network configuration, after creating the static route, update the routing rules — perform emergency switchover balancer amphora: