This is a guide for whitelisting the Supermetrics IP addresses for your data transfer to your Snowflake DWH.
1. Prerequisites: If your organization requires IP whitelisting for Snowflake, you will need to alter your network policy in Snowflake.
NOTE: Only Snowflake users with role SECURITYADMIN or higher (e.g. ACCOUNTADMIN) are authorized to alter network policies. If your user does not have the required role, please contact your Snowflake admins.
- Snowflakes guide for modifying the properties for an existing network policy can be found from here: https://docs.snowflake.com/en/sql-reference/sql/alter-network-policy.html
NOTE: If your organization does not have a network policy in place but would like to create one, please follow the instructions here:
2. In order for your transfers to work, you will need to whitelist the following Supermetrics IP addresses:
NOTE: You need to add your own IP address/es to the whitelist if you are creating a new network policy, otherwise you might not be able to activate the policy:
// CASE 1: ALTER EXISTING ACCOUNT LEVEL NETWORK POLICY
ALTER NETWORK POLICY IF EXISTS <YOUR_CURRENT_NETWORK_POLICY>
SET ALLOWED_IP_LIST = ('<YOUR_CURRENTLY_WHITELISTED_IP_ADDRESSES>','22.214.171.124', '126.96.36.199', '188.8.131.52', '184.108.40.206')
//BLOCKED_IP_LIST = ( '<YOUR_CURRENTLY_BLACKLISTED_IP_ADDRESSES>' [ , '<ip_address>' ... ] )
//COMMENT = '<string_literal>'
// CASE 2: CREATE NEW NETWORK POLICY
CREATE OR REPLACE NETWORK POLICY <NEW_SUPERMETRICS_NETWORK_POLICY>
ALLOWED_IP_LIST = ('<YOUR_CURRENT_IP_ADDRESS/ES>','220.127.116.11',
'18.104.22.168', '22.214.171.124', '126.96.36.199')
//BLOCKED_IP_LIST = ( '<ip_address>' [ , '<ip_address>' , ... ] )
//COMMENT = '<string_literal>'
3. You can either activate the policy on ACCOUNT level or on USER level, after creating a new policy: https://docs.snowflake.com/en/user-guide/network-policies.html#network-policy-activation
NOTE: If you have have multiple network policies, the following rules apply:
- If a user is associated to both an account-level and user-level network policy, the user-level policy takes precedence:
- Only one network policy can be associated with an account at any one time. Associating a network policy with your account automatically removes the currently-associated network policy:
The benefit of activating the policy on ACCOUNT level or altering the existing ACCOUNT level policy is that it will be applied to your entire account and all your Snowflake users.
The benefit of using USER level network policies is that you can tailor your policies to specific needs and users, e.g. if you know that only a few of your Snowflake users are going to create destinations and transfers at team.supermetrics.com, you can alter only their respective Snowflake users to use a specific network policy instead of modifying the policy of your entire Snowflake account.
NOTE: If you have altered an existing account level network policy, activation is not required.
// CASE 2.1: Activate new policy on Account level
ALTER ACCOUNT SET NETWORK_POLICY = <NEW_SUPERMETRICS_NETWORK_POLICY>
//CASE 2.2: Activate new policy on User level
ALTER USER IF EXISTS <SNOWFLAKE_USER> SET NETWORK_POLICY = <NEW_SUPERMETRICS_NETWORK_POLICY>
4. After you have altered and activated the network policy in Snowflake, you can proceed with creating destinations: