This article introduces how to configure VPC access and public network access for Ledger instances in LedgerDB.

VPC access settings

VPC: Each Virtual Private Cloud (VPC) is an isolated network. We recommend that you use VPC to access Ledger instances because VPC is more secure. What is a VPC?

Procedure

1. Login LedgerDB console

2. In instance details page access settings inside the tab. Click the click Configure button next to VPC Endpoint.

3. Create /Select a VPC

  • If you have never created a VPC on Alibaba Cloud, use the "Create a VPC" button to go to the VPC console to create a VPC.
  • If you have not created a vSwitch in the Alibaba Cloud Console, click "Create vSwitch" and create a vSwitch in the VPC console.

4. Select an existing VPC and a vSwitch under the VPC from the drop-down list and click submit.

5. Copy the Endpoint generated by LedgerDB for you to access a specific Ledger instance in a VPC.

Public network access settings

Procedure

1. Login LedgerDB console

2. In instance details page access settings inside the tab. Next to public endpoint, click show.

3. Copy the public IP address of the Ledger instance that is returned by the system for you to access a specific Ledger instance through the public network.

Whitelist settings

Only IP addresses that are added to the whitelist can access the LedgerDB instance through the public endpoint.

Only the creator of a LedgerDB instance can configure the whitelist:

1. Login LedgerDB console

2. In instance details page access settings inside the tab. Configure a whitelist.

Notice IPv4 CIDR blocks are supported. Enter a CIDR block, and add a forward slash (/) and a mask ranging from 1 to 32. The mask indicates the length of the network identification bit in the subnet mask. Example: 192.168.0.3/24. For more information about the CIDR format, see Network FAQ. If 0.0.0.0/0 indicates that access from all IP addresses is allowed, proceed with caution.