All Products
Search
Document Center

ApsaraDB for Memcache:Configure an IP address whitelist

Last Updated:Aug 08, 2023

Before you use an ApsaraDB for Memcache instance, you must add the IP addresses or CIDR blocks that are used to access the instance to the whitelist of the instance. This ensures database security and stability. You can improve access security for ApsaraDB for Memcache if you properly configure the whitelist. We recommend that you maintain the whitelist on a regular basis. This topic describes how to set a whitelist.

Usage notes

  • The Elastic Compute Service (ECS) instance whose IP address is added to the whitelist must be deployed in the same region as the ApsaraDB for Memcache instance.

  • If you want an application on an ECS instance to access multiple ApsaraDB for Memcache instances, add the IP address of the ECS instance to the whitelists of the ApsaraDB for Memcache instances.

Procedure

  1. Log on to the ApsaraDB for Memcache console.

  2. On the Instances page, find the ApsaraDB for Memcache instance that you want to manage.

  3. Click the instance ID or click Manage in the Actions column to go to the Instance Information page.

  4. In the left-side navigation pane, click Whitelist Settings.

  5. Find the default whitelist and click Modify.

Note

You can also click Add Whitelist to create an IP address whitelist. The name of a whitelist must be 2 to 32 characters in length and can contain lowercase letters, digits, and underscores (_). The name must start with a lowercase letter and end with a lowercase letter or digit.

  1. In the Modify Whitelist dialog box, perform one of the following operations:

  • Add IP addresses or CIDR blocks to the whitelist

Note
  • Separate IP addresses with commas (,). A maximum of 1,000 unique IP addresses can be added. The following formats are supported:

    • 10.23.12.24 (IP address)

    • 10.23.12.24/24 (This is a CIDR block in which /24 indicates that the prefix of the CIDR block is 24 bits in length. You can replace 24 with a value that ranges from 1 to 32.)

  • If you set the prefix length to 0, for example, 0.0.0.0/0 or 127.0.0.1/0, all IP addresses are allowed to access the instance. This poses a high security risk. Proceed with caution.

  • Add private IP addresses of ECS instances to the whitelist

    1. Click Load ECS Internal Network IP.

    2. Select IP addresses based on your business requirements. Add private IP addresses of ECS instances to the whitelist

  1. Click OK.