Our customers would like to add outbound rules to our servers, which are abstracted by Cloudflare anycast. All source CF IP’s are published here (https://www.cloudflare.com/ips-v4 ). I cannot find any discussion or publication that documents the destination (anycast) IPs. I do see that the same two IPs are returned when I dig on our CF protected site but we need to know if they are truly static and something we can provide to our customers.
To be more blunt, I see the below two A records for my abstracted hostname. Is it possible that these ips will change? Is there a list of available anycast ips that we can use for outbound FW rules.
$ dig @{{ various-authority }} {{ my-hostname }}
...
;; ANSWER SECTION:
{{ my-hostname }}. 300 IN A 104.20.54.62
{{ my-hostname }}. 300 IN A 104.20.55.62