I’m using the official docker installation instructions to install Docker on one of our internal Debian servers. The installation instructions show one way of installing the key:
curl -fsSL https://download.docker.com/linux/$(. /etc/os-release; echo "$ID")/gpg | sudo apt-key add -
Our network admin ran “dig download.docker.com” yesterday, and punched a hole in the firewall for these IP addresses. Today I ran the same command, but got a different set of IP addresses. I’m guessing this has something to do with the Cloudfront service.
How can we go about ensuring that we cover the necessary IP addresses to allow the curl-command to run successfully?