Help Center> Elastic Load Balance> User Guide> Access Control> Managing IP Address Groups> Creating an IP Address Group
Updated on 2024-03-19 GMT+08:00
View PDF

Creating an IP Address Group

IP Address Group Overview

An IP address group is a collection of IP addresses that you can use to manage IP addresses with the same security requirements or whose security requirements change frequently.

ELB allows you to use a whitelist or blacklist for access control. If you want to configure an access control policy, you must select an IP address group.

  • Whitelist: Only IP addresses in the IP address group can access the listener. If the IP address group does not contain any IP address and you have selected whitelist for access control, no IP addresses can access the listener.
  • Blacklist: IP addresses in the IP address group are denied to access the listener. If the IP address group does not contain any IP address and you have selected blacklist for access control, all IP addresses can access the listener.

Constraints

  • By default, you can create a maximum of 50 IP address groups.
  • An IP address group can be associated with a maximum of 50 listeners.

Procedure

  1. Log in to the management console.
  2. In the upper left corner of the page, click and select the desired region and project.
  3. Hover on in the upper left corner to display Service List and choose Network > Elastic Load Balance.
  4. In the navigation pane on the left, choose Elastic Load Balance > IP Address Groups.
  5. On the displayed page, click Create IP Address Group.
  6. Configure the parameters based on Table 1.
    Table 1 Parameters required for creating an IP address group

    Parameter

    Description

    Example Value

    Name

    Specifies the name of the IP address group.

    ipGroup-01

    Enterprise Project

    Specifies an enterprise project by which cloud resources and members are centrally managed. For details, see the Enterprise Management User Guide.

    -

    IP Addresses

    Specifies IPv4 or IPv6 IP addresses or CIDR blocks that are added to the whitelist or blacklist for access control.

    • Each line must contain an IP address or a CIDR block and end with a line break.
    • Each IP address or CIDR block can include a description with a vertical bar (|) separated, for example, 192.168.10.10 | ECS01. The description is 0 to 255 characters long and cannot contain angle brackets (<>).
    • You can add a maximum of 300 IP addresses or CIDR blocks in each IP address group.

    10.168.2.24

    10.168.16.0/24

    Description

    Provides supplementary information about the IP address group.

    -
  7. Click OK.