Request Anycast static IPs to use for allowlisting
You can request Anycast static IPs from CloudFront to use with your distributions. Anycast static IP lists contain IPv4 IP addresses that are dedicated to your AWS account and spread across geographic regions.
You can request 21 Anycast static IP addresses to allowlist with network providers so that you can waive data charges for viewers who access your application. Alternatively, you can use these static IPs within outbound security firewalls to control traffic exchange with approved applications. Anycast static IP lists can be used with one or more distributions.
If you want to enable routing of apex domains (such as example.com) directly to your CloudFront distributions, you can request 3 Anycast static IP addresses for this use case. Then, add A records in your DNS to point the apex domain to CloudFront.
Anycast static IPs work with Server Name Indication (SNI)
Prerequisites
To use Anycast static IP lists with your CloudFront distribution, you must:
- Turn off IPv6 for the distribution that you want to use with your Anycast static IP list. 
- Select Use all edge locations for the price class for the distribution. For more information about pricing, see CloudFront pricing - . 
Request an Anycast static IP list
Request an Anycast static IP list to use with your CloudFront distribution.
To request an Anycast static IP list
- Sign in to the AWS Management Console and open the CloudFront console at https://console.aws.amazon.com/cloudfront/v4/home - . 
- In the left navigation pane, choose Static IPs. 
- For Request, choose the link to contact CloudFront support engineering. 
- Provide your workload information (request bytes per second and requests per second). 
- CloudFront support engineering reviews your request. The review process might take up to two days. 
After your request is approved, you can create an Anycast static IP list and associate it with one or more distributions.
Create an Anycast static IP list
Before you begin, request an Anycast static IP list as explained in the preceding section.
To create an Anycast static IP list
- Sign in to the AWS Management Console and open the CloudFront console at https://console.aws.amazon.com/cloudfront/v4/home - . 
- In the left navigation pane, choose Static IPs. 
- Choose Create Anycast IP list. 
- For Name, enter a name. 
- For Static IP use cases, select the appropriate use case. 
- Review the service terms and pricing, and choose Submit. 
After your static IP list is created, you can view the allocated IP addresses on your static IP list detail page. You can also associate distributions with the static IP list.
Associate an Anycast static IP list with an existing distribution
Before you begin, request and create an Anycast static IP list as explained in the preceding sections. Also confirm that you have turned off IPv6 for your distribution and selected Use all edge locations (best performance) for the price class.
To associate an Anycast static IP list with an existing distribution
- Do one of the following: - Associate the static IP list from the static IP list detail page: - Sign in to the AWS Management Console and open the CloudFront console at https://console.aws.amazon.com/cloudfront/v4/home - . 
- Choose Static IPs in the left navigation pane. 
- Choose the name of your static IP list. 
- Choose Associate distributions. 
- Select one or more distributions and choose Associate distributions. 
 
- Associate the static IP list from the distribution detail page: - Sign in to the AWS Management Console and open the CloudFront console at https://console.aws.amazon.com/cloudfront/v4/home - . 
- Choose Distributions in the left navigation pane. 
- Choose the name of your distribution. 
- On the General tab, under Settings, choose Edit. 
- For Anycast IP list, select the Anycast static IP list to use with this distribution. 
- Choose Save changes. 
 
 
Associate an Anycast static IP list with a new distribution
Before you begin, request and create an Anycast static IP list as explained in the preceding sections.
To associate an Anycast static IP list with a new distribution
- Create a new distribution. For more information, see Create a CloudFront distribution in the console. For Settings, you must make the following selections to use your Anycast static IP list: - For Anycast IP list, select your Anycast static IP list from the dropdown list. 
- For Price class, select Use all edge locations (best performance). 
- For IPv6, select Off. 
 
Finish creating your distribution. You can choose any other settings and configurations that are not required for Anycast static IP lists based on your needs.
For more information about quotas related to Anycast static IP lists, see Amazon CloudFront endpoints and quotas in the AWS General Reference.