I really need to write that "how hyperdrive works" blog post soon. I'm finally allowed to.
I really need to write that "how hyperdrive works" blog post soon. I'm finally allowed to.
AI'm hopeful we can get per-query cache bypass/adjustment done sooner than that would take.
DI'm pretty sure the answer to this is "heck no", but would it possible to have a unique outgoing port for each Hyperdrive config? (And I don't think it would be too insane, since it's only 25 ports per paid Workers account that would need to be "reserved".) Or even 1 unique port per account would be nice.
That would be really nice to firewall based off of.
That would be really nice to firewall based off of.
AHmmm. I'll ask the team, it's not something we've talked about afaik
DI would be curious if using Hyperdrive reduces bandwidth pricing (and by how much) for Google Cloud customers, since Cloudflare has a reduced bandwidth price iirc.
AThe goal is that it should, yes. Still needs some work to get all the way there, I believe. I don't work with that project a ton and there is some nuance IIRC.
Diirc it's already reduced pricing, no?
AIt gets complicated. It goes GCP->Workers->Hyperdrive for ingress, so I believe that's already reduced. Egress from ??->Workers->Hyperdrive->GCS is the one I'm not certain about.
DWorkers->Hyperdrive->GCS would be ingress from Google's standpoint (which is free)
DYou should be able to automatically tell who did the allowlist by trying to connect from a new IP. Then whoever fails, email them giving them a warning that they need to use the new proper official list of IP ranges. 
AWe landed with just never migrating them, plus courtesy email. Same difference, though.
Doh, is there a list already somewhere secret? 
AOf the shared address pool? Not publicly, but folks are clever. Hazard of making tools for other devs, I guess. In some regions things are stable enough that folks noticed that all Hyperdrive connections were coming in from a small number of addresses, and eventually just coded that into their firewall rules.
A(that's my theory, based on the available evidence. maybe someone dug up a list I don't know about)
OIs there any eta for mysql support?
AWe generally don't put out dates in advance of releases. That tends to make nobody happy.
It's being actively worked on, though.
It's being actively worked on, though.
OOkay, good for me, thanks
SCan you connect hyperdrive to a digital ocean managed postgres db or is the IP range still not allowed?
ASorry, not sure I understand the question.
Hyperdrive doesn't refuse to egress to DO ranges. Is there an issue with ingressing to DO from the shared pool?
Hyperdrive doesn't refuse to egress to DO ranges. Is there an issue with ingressing to DO from the shared pool?
SHey thanks for reply on this. Yes when I try to setup hyperdrive + a managed DO database in cf dashboard it errors
I have setup connections with supabase in the past successfully and I searched this channel for issues with DO leading me to believe it’s with DO ip range?
I have setup connections with supabase in the past successfully and I searched this channel for issues with DO leading me to believe it’s with DO ip range?
AInteresting. I searched and you're right, TCP connect from workers to DO seems to have some issues.
I'm not sure if it's due to the shared address range or not, though.
I'll check Monday with my teammate who's working on the migration to the CF IP ranges and see if we have a way to test if DO cooperates with those. I'd be curious to know, honestly
I'm not sure if it's due to the shared address range or not, though.
I'll check Monday with my teammate who's working on the migration to the CF IP ranges and see if we have a way to test if DO cooperates with those. I'd be curious to know, honestly
SI have digital ocean and azure credits to burn and the latter seem to be priced crazily so would be ideal! 
Maybe if there is no solution with public there is one with private connection?
I’d be open to using d1 instead also but I have about 50gb of data already so I don’t know if limits can be increased to say 100gb (for future scale)
Also happy to discuss using r2 as this is mostly a primary store of library like data with reads being carried out from my typesense instance.
I am on CF startups program also
Maybe if there is no solution with public there is one with private connection?
I’d be open to using d1 instead also but I have about 50gb of data already so I don’t know if limits can be increased to say 100gb (for future scale)
Also happy to discuss using r2 as this is mostly a primary store of library like data with reads being carried out from my typesense instance.
I am on CF startups program also
AFYI @thomasgauvin ^
Might be in a better spot to address what will fit your use case best.
Might be in a better spot to address what will fit your use case best.
SHey,
I am not sure what Hyperdrive is, but does this make it possible to have a database being hidden behind the Cloudflare Network?
I am not sure what Hyperdrive is, but does this make it possible to have a database being hidden behind the Cloudflare Network?
AYes. Our tunnel integration does exactly that.
SI want to hide my database behind Cloudflare's Network without needing to have the 
Is that what Hyperdrive fixes?
Cloudflared application on all devices.. Is that what Hyperdrive fixes?
AHyperdrive is a way to talk from Workers to a centralized database. We integrate with tunnels too so you'd only need have cloudflared running once somewhere within your vpc to egress the traffic to your DB from.
Based on your questions I'm assuming you're not running your application on Workers?
Based on your questions I'm assuming you're not running your application on Workers?
SNo I am not..
AOkay. This is another interesting use case for non-workers ingress for us. I'll mention this over to our product folks.
AFor now though, Hyperdrive probably isn't going to be a lot of help for your use case, I'm afraid.
SAlright, thanks tho for the help 
SSweet thank you, let me know on the digital ocean stuff when back into the office just to get a firm answer if possible vs not.
Then I can explore alternatives if its a definite no!
Happy to speak to @thomasgauvin also. As exploring alternatives is totally fine too.
Then I can explore alternatives if its a definite no!
Happy to speak to @thomasgauvin
also. As exploring alternatives is totally fine too.
NIs Hyperdrive on the Cloudflare IP range? (So we can whitelist those)
DYou could probably use cloudflared just fine
ITLDR: not yet.
TThis is correct, Hyperdrive is not on Cloudflare's IP range @Nick
JAre there any plans for supporting custom connection limits per region? Right now we seem to be hitting that limit and losing performance by being routed to a nearby region.
AWe're moving away from regional pooling, which should dramatically improve that without the additional config needed
APost your Hyperdrive ID and I'll enroll you early, we're still teeing up the migration for everyone
J707875b010bc457e9a80dfddb19ef919
JThanks!
JThis was created recently btw, so not sure if it already has the new version
AJust cut over for new configs last week, so it'd depend
Alet me check
AAh yeah, you're already on global pools
AMoving to thread
DIt is on CF’s ASN though iirc?
HIIRC it is on a CF ASN, but not the CF ASN
DAhhh… I definitely missed that.
