Configuring DCS Redis Access Whitelist
DCS Redis 3.0/4.0/5.0/6.0 and Memcached instances are deployed in different modes. Therefore, the access control method varies.
- To control access to DCS Redis 3.0, Memcached, and Redis 6.0 professional edition instances, you can use security groups. Whitelists are not supported. For details on how to configure a security group, see How Do I Configure a Security Group?
- To control access to DCS Redis 4.0/5.0/6.0 basic edition instances, you can use whitelists. Security groups are not supported.
The following describes how to manage whitelists of a Redis 4.0/5.0/6.0 basic edition instance to allow access only from whitelisted IP addresses. Enabling whitelists only allows instance access from IP addresses within them, and only applies to new connections.
If no whitelists are added for the instance or the whitelist function is disabled, all IP addresses that can communicate with the VPC can access the instance.
Creating a Whitelist Group
- Log in to the DCS console.
- Click in the upper left corner of the management console and select the region where your instance is located.
- In the navigation pane, choose Cache Manager.
- Click the name of a DCS instance.
- Choose Instance Configuration > Whitelist. On the displayed page, click Create Whitelist Group.
- In the Create Whitelist Group dialogue box, specify Group Name and IP Address/Range.
Table 1 Whitelist parameters Parameter
Description
Example
Group Name
Whitelist group name of the instance. A maximum of four whitelist groups can be created for each instance.
Group naming rules:
- Start with a letter.
- 4 to 64 characters.
- Only letters, digits, hyphens (-), and underscores (_) are allowed.
DCS-test
IP Address/Range
IP addresses or address segments of the instances allowed for access. A maximum of 100 IP addresses or IP address segments can be added to an instance. Use commas (,) to separate multiple IP addresses or address segments.
Unsupported IP address and IP address range: 0.0.0.0 and 0.0.0.0/0.
10.10.10.1,10.10.10.10,192.168.0.0/16
- Click OK.
The whitelist function takes effect immediately after the whitelist group is created. Only whitelisted IP addresses can access the instance. For persistent connections, the whitelist takes effect after reconnection.
- To modify a whitelist: Click Edit on the whitelist page to modify the IP addresses or address segments of a whitelist.
- To delete a whitelist: Click Delete on the whitelist page to delete a whitelist group.
- To disable a whitelist: Click Disable Whitelist in the left corner of the whitelist tab page. After a whitelist is disabled, IP addresses within the same VPC as the instance can be used to access the instance. To enable the whitelist, click Enable Whitelist.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot