Managing Private IP Addresses

Secondary Private IPs

After an instance is created, you can add a secondary private IP to one of its VNICs. You can add it to either the primary VNIC or a secondary VNIC on the instance. The secondary private IP address must be in the subnet to which the VNIC belongs. You can move a secondary private IP from a VNIC on one instance to a VNIC on another instance on condition that both VNICs belong to the same subnet.

Typical use cases for a secondary private IP include:

• Instance failover: You assign a secondary private IP to an instance. If a problem occurs with the instance, you can easily reassign its secondary private IP to a standby instance in the same subnet. In addition, if the secondary private IP has an associated public IP, that public IP moves along with the private IP.
• Running multiple services or endpoints on a single instance: For example, you could have an instance that runs multiple container pods, where each pod uses its own IP address from the VCN CIDR. The containers have direct connectivity to other instances and services in the VCN. Another example: you could run multiple SSL web servers with each one using its own IP address.

Secondary private IP addresses have the following properties:

• They're supported for all shapes and OS types.
• They can be assigned only after the instance is created, or the secondary VNIC is created and attached.
• They're automatically deleted when you delete the instance or detach and delete the secondary VNIC.
• Deleting a secondary private IP from a VNIC returns the address to the pool of available addresses in the subnet.
• A VNIC can have a maximum of 31 secondary private IPs.
• The instance's bandwidth is fixed regardless of the number of private IP addresses attached. You can't specify a bandwidth limit for a particular IP address on an instance.
• A secondary private IP can have a reserved public IP associated with it at your discretion.