Netplan Config Generator

Renderer:

Choose the Netplan backend to emit in the generated YAML.

Interface name:

Examples: ens192, eth0, enp1s0, or id0 with a MAC match.

Static address CIDR:

One static address per line; dual-stack interfaces can include both families.

Default gateway:

Leave blank only when this interface should not own a default route.

DNS servers:

Resolvers are emitted under nameservers.addresses.

Search domains:

Optional suffix list for nameservers.search.

Static routes:

One route per line using destination,gateway,metric,on-link,table.

Samples stay local and replace the current form.

Default route metric:

Use when multiple interfaces or default routes must be ordered.

Match MAC address:

Optional lowercase colon-separated MAC address.

Set interface name:

Optional final interface name after matching.

MTU:

Common Ethernet is 1500; jumbo frames are often 9000.

bytes

Mark interface optional

Adds optional: true so boot does not wait for this interface.

Emit dhcp4/dhcp6 false for static families

Keeps generated static configs explicit. Clear only when another file owns DHCP state.

Use legacy gateway4/gateway6 keys

Default output uses routes with to: default; enable only for older environments that still require gateway keys.

{{ result.yaml }}

Field	Value	YAML path	Operator note	Copy
{{ row.field }}	{{ row.value }}	`{{ row.path }}`	{{ row.note }}

Route	Destination	Gateway	Metric	Flags	Copy
{{ row.label }}	`{{ row.to }}`	`{{ row.via }}`	{{ row.metric }}	{{ row.flags }}

Severity	Check	Detail	Recommendation	Copy
{{ row.severity }}	{{ row.check }}	{{ row.detail }}	{{ row.recommendation }}

Embed:

Customize

Include current inputs

Size

Advanced

Width

Height

Aspect ratio

Max height

Collapsible embed

Allow fullscreen

Referrer policy

Sandbox tokens

Ubuntu network changes often come down to a short YAML file, but that file decides how a host finds its address, gateway, DNS servers, and route priority after boot. Netplan is the declarative layer that reads configuration under /etc/netplan/ and hands the work to a renderer such as systemd-networkd or NetworkManager. The YAML is compact, which is useful for automation, but it also means a copied address, missing prefix, or wrong backend choice can break a server that otherwise looks healthy.

A static Ethernet configuration has two separate jobs. First it identifies the device that should receive the settings, either by the current interface name or by a stable match such as a MAC address. Then it describes the network facts attached to that device: CIDR addresses, default routes, additional routes, resolver addresses, search domains, and optional interface details such as MTU. These pieces need to agree with each other. An IPv4 gateway should normally live inside one of the entered IPv4 subnets, IPv6 routes need IPv6 next hops, and route metrics need to make the preferred path obvious when several defaults exist.

Several Netplan terms carry more meaning than their names suggest:

Renderer: The backend that applies the network definition. Server installs commonly use networkd; desktop and managed-profile systems often use NetworkManager.
CIDR address: An IP address plus prefix length, such as 10.44.20.10/24 or 2001:db8:44:20::10/64. The prefix defines the directly connected subnet.
Default route: The route used when no more specific destination matches. Current Netplan examples represent it as a route with to: default and a next hop in via.
Metric: A route priority value. Lower metrics are usually preferred when two routes cover the same destination in the same table.
Match and set-name: A way to bind settings to a physical device and optionally give it a stable final name, useful when kernel interface names may change.

The risky part is not only YAML syntax. Cloud images may already have files generated by provisioning systems, a desktop image may expect NetworkManager, a virtual machine may expose a new interface name after migration, and multi-homed servers may need different route tables or metrics. A file that looks correct in isolation can still lose connectivity if it conflicts with those host-level facts.

A good Netplan change is therefore both syntactically valid and operationally believable. The address plan, gateway, renderer, interface identity, and route priority should be checked before the file is applied, and remote systems should be tested with rollback protection whenever the environment supports it.

How to Use This Tool:

Build one static Ethernet definition at a time and compare the YAML with audit tables before moving it to a host.

Choose Renderer. Use networkd for most Ubuntu Server hosts, NetworkManager for desktop or centrally managed hosts, or omit the renderer only when another Netplan file intentionally owns the global renderer.
Enter the Interface name. Use the real Linux interface name, such as ens192 or enp1s0, unless you plan to match by MAC address and assign a final name in Advanced.
Add each Static address CIDR with a prefix. Dual-stack hosts can include both IPv4 and IPv6 addresses, one per line or comma-separated.
Add a Default gateway only for the families this interface should route. Keep one IPv4 gateway and one IPv6 gateway in that field; use Static routes for extra destinations, weighted defaults, on-link routes, or route tables.
Enter DNS servers as IP addresses and Search domains as plain suffixes. The review will flag malformed resolver IPs and suspicious search-domain text.
Open Advanced when the host needs a default route metric, MAC match, final interface name, MTU, optional boot behavior, explicit static-family DHCP flags, or legacy gateway4/gateway6 keys.
Use Static sample or Dual-stack sample when you want a complete starting point. These buttons replace the current form values, so copy anything important first.
Read Validation Review before copying the YAML. Fix every Error, then decide whether each Warning matches the intended network design.

Interpreting Results:

Netplan YAML ready means the entered values passed the generator's local checks. It does not prove that the interface exists, that a renderer is installed, that another YAML file will not override a setting, or that the gateway can actually answer on the target network.

How to interpret Netplan generator outputs
Output	What it tells you	What to check next
`Netplan YAML`	Shows the generated `network:` document with version, renderer, Ethernet definition, addresses, nameservers, and routes.	Compare it with the target host's existing files before placing it under `/etc/netplan/`.
`Interface Audit`	Summarizes renderer, interface key, static families, DHCP flags, DNS, MTU, boot behavior, and the YAML path for each area.	Use it to catch a wrong device name, missing address family, or unexpected omitted value.
`Route Ledger`	Lists emitted route destinations, next hops, metrics, flags, families, and route tables.	Check duplicate defaults, family mismatches, and metrics before applying on a multi-interface host.
`Validation Review`	Separates blocking errors, review warnings, informational notes, and pass messages.	Treat errors as must-fix. Treat warnings as change-control notes that need a reason.
`JSON`	Provides a structured copy of the inputs, generated YAML, route list, and validation rows.	Use it for review records or to compare generated changes outside the page.

Copy and download actions are available for the YAML and JSON. The audit tables can be copied or downloaded as CSV, and the interface, route, and validation tables can be exported as DOCX review notes when the page environment supports document export.

Technical Details:

Netplan version 2 configuration uses a top-level network: mapping. Physical Ethernet devices are declared under ethernets, where each key names an interface definition. The same definition can hold static addresses, DHCP flags, name matching, renaming, nameservers, routes, MTU, and boot behavior.

Static addresses are written in CIDR notation because the prefix length defines the local subnet. Routes use destinations such as default, 0.0.0.0/0, ::/0, or another CIDR block, and the gateway must be an IP address from the same family as the destination. When default gateways are not emitted through legacy keys, they become route rows with to: default.

network:
  version: 2
  renderer: networkd
  ethernets:
    ens192:
      dhcp4: false
      addresses:
        - 10.44.20.10/24
      nameservers:
        addresses:
          - 10.44.10.53
      routes:
        - to: default
          via: 10.44.20.1
          metric: 100

Generated YAML Areas:

Generated Netplan YAML areas and checks
Area	YAML shape	Important check
Renderer	`network.renderer` when selected; omitted when left blank.	Valid generated choices are `networkd`, `NetworkManager`, or no emitted renderer.
Ethernet identity	`network.ethernets.<id>`, with optional `match.macaddress` and `set-name`.	Use the real interface name for direct matching, or pair a stable MAC match with a final name when names may drift.
Static addresses	`addresses` plus optional explicit `dhcp4: false` and `dhcp6: false`.	Every address needs a valid IPv4 or IPv6 prefix. IPv4 prefixes run from `0` to `32`; IPv6 prefixes run from `0` to `128`.
Nameservers	`nameservers.addresses` and optional `nameservers.search`.	Resolver entries are IP addresses. Search entries are domain suffixes, not URLs or paths.
Routes	`routes` rows with `to`, `via`, optional `metric`, optional `on-link`, and optional `table`.	Destination and gateway families must match, and duplicate defaults need distinct metrics or tables.
Legacy gateways	`gateway4` and `gateway6` when the legacy option is enabled.	Prefer route-based defaults for current Netplan files unless the target environment requires older gateway keys.

Validation Boundaries:

Validation boundaries for Netplan generated output
Check	Blocking error	Review warning or note
Interface name	Blank name or characters outside letters, numbers, dot, dash, underscore, and colon.	Names longer than the usual Linux interface-name limit are flagged when no MAC match is present.
Address CIDR	Missing prefix, invalid IP literal, or prefix outside the family range.	No separate warning. Malformed static addresses are treated as errors.
Default gateway	Invalid gateway IP or multiple gateways in the same family in the gateway field.	Gateway family without a matching static address, no default gateway, or an IPv4 gateway outside the entered IPv4 subnet.
Static route row	Missing destination, missing gateway, invalid destination, invalid gateway, family mismatch, or invalid metric.	Unrecognized on-link text, suspicious route table text, or duplicate default-route priority.
Advanced values	Invalid lowercase MAC notation, risky final name, metric outside `0` to `4294967295`, or MTU outside `576` to `9216`.	`set-name` without a MAC match, NetworkManager on a server-style host, or legacy gateway output.

Static route input uses CSV rows in the order destination, gateway, metric, on-link flag, and route table. Blank optional columns are allowed, but the destination and gateway must still form a valid route. The generated route ledger is a useful audit view because it normalizes 0.0.0.0/0 and ::/0 defaults, shows the family, and makes route-table or metric choices visible before the YAML is applied.

Limitations and Privacy:

The YAML is assembled in the browser from the values you enter, and no server lookup is needed to generate the configuration. That keeps the drafting step local, but it also means the checks are limited to text shape, address families, route consistency, and common Netplan hazards.

The generator cannot inspect the target host's existing Netplan files, renderer availability, cloud-init behavior, kernel interface inventory, link state, VLAN or switch setup, routing policy database, firewall rules, or real DNS reachability. It can warn when an IPv4 gateway is outside an entered subnet, but only the host and network segment can prove whether an on-link or routed design is valid.

Use netplan try on remote systems when possible so a bad configuration can roll back if it is not confirmed.
Use netplan generate to catch parser errors before applying a file permanently.
Keep console or out-of-band access for important servers, especially when changing default routes, renderer, or interface identity.
Verify rollback and on-disk configuration after a failed or cancelled netplan try, because the target host remains the source of truth.

Advanced Tips:

Keep route-based defaults selected unless the target host is known to require gateway4 or gateway6; current Netplan files are easier to audit when defaults appear in the route list.
Use Default route metric whenever another interface can also carry a default route, then confirm the Route Ledger shows distinct priority or table values.
Pair Match MAC address with Set interface name on cloned or migrated systems so the generated definition binds to the physical device before renaming it.
Set MTU only when the link, virtual switch, overlay, or provider network supports the chosen frame size from end to end.
Use the Dual-stack sample to check IPv4 and IPv6 family separation, then replace every documentation address and gateway before copying the YAML.
Copy the validation or route table into a change ticket when default routes, on-link flags, or route tables are part of the approval risk.

Worked Examples:

Single-stack Ubuntu Server interface

For a VM on 10.44.20.0/24, choose networkd, enter ens192, add 10.44.20.10/24, set the gateway to 10.44.20.1, and add resolver IPs. A clean result should show one IPv4 address, one default route, and explicit static-family DHCP false output when that option is enabled.

Dual-stack host with stable naming

A dual-stack server can include one IPv4 CIDR and one IPv6 CIDR on the same Ethernet definition, plus one gateway per family. If the hardware name may change after migration, add a lowercase MAC match and a final interface name. Review the audit row for interface identity before trusting the generated YAML.

Multiple default routes

A host with more than one outbound path can use additional route rows for weighted defaults. The route ledger should show distinct metrics or tables so the active path is intentional. Two defaults with the same destination, family, metric, and table are review-worthy because troubleshooting becomes ambiguous.

Broken route row

A row such as 10.55.0.0/16,2001:db8::1,abc,maybe,bad table! is not safe. The destination is IPv4 while the gateway is IPv6, the metric is not numeric, the on-link flag is unclear, and the table text is suspicious. Fix those issues before copying the YAML.

FAQ:

Should default gateways use routes or gateway4 and gateway6?

Use route-based defaults for current Netplan files unless an older target specifically requires gateway4 or gateway6. The legacy option exists for compatibility, and the review warns when it is enabled.

Why does a missing default gateway produce a warning?

Some interfaces are isolated, policy-routed, or reachable only through specific static routes. The warning is there because most ordinary server interfaces need a default route for outbound traffic.

When should I use match.macaddress and set-name?

Use them when a physical device needs stable identity across boots, image moves, or hardware order changes. The match should uniquely identify one device before a final name is assigned.

Can a generated file still lock me out?

Yes. The generator can catch malformed values and obvious route conflicts, but it cannot test live renderer behavior, gateway reachability, existing file precedence, or firewall effects. Test on the target host with rollback protection where possible.

Why is NetworkManager called out in the review?

NetworkManager is a valid renderer, but it is often a different operational choice from a typical Ubuntu Server networkd setup. The note prompts a host-type check rather than treating NetworkManager as an error.

Glossary:

Netplan: Ubuntu's declarative network configuration system that reads YAML and asks a renderer to apply the resulting network setup.
Renderer: The backend that applies the configuration, most commonly networkd or NetworkManager.
CIDR: Address notation that combines an IP address and prefix length, such as 192.0.2.10/24.
Default route: The route used for traffic that does not match a more specific destination.
On-link: A route flag that treats the gateway as directly reachable even when it is outside the entered subnet.
Route table: A routing table used to separate route decisions, often with policy routing.

References:

YAML configuration, Netplan documentation.
Configuration examples, Netplan documentation.
netplan try, Netplan documentation.
How to add a static route in Linux, Simplified Guide.
How to change DNS servers in Linux, Simplified Guide.