If your self-managed databases are not deployed on Alibaba Cloud, the databases may accept connections only from specific IP addresses. In this case, you must configure the security settings of your self-managed databases to allow access from Data Transmission Service (DTS) servers. For example, if you deploy a firewall for a database, you must add the CIDR blocks of DTS servers to the IP whitelist of the firewall.
Usage notes
If the source or destination database is an ApsaraDB RDS instance, such as an ApsaraDB RDS for MySQL or ApsaraDB for MongoDBg instance, DTS automatically adds the CIDR blocks of DTS servers to the IP address whitelist of the instance. If the source or destination database is a self-managed database hosted on an Elastic Compute Service (ECS) instance, DTS automatically adds the CIDR blocks of DTS servers to the security group rules of the ECS instance, and you must make sure that the ECS instance can access the database. If the self-managed database is hosted on multiple ECS instances, you must manually add the CIDR blocks of DTS servers to the security group rules of each ECS instance. If the source or destination database is a self-managed database that is deployed in a data center or provided by a third-party cloud service provider, you must manually add the CIDR blocks of DTS servers to the IP address whitelist of the database to allow DTS to access the database.
If the source or destination database of the DTS instance is connected to Alibaba Cloud by using Cloud Enterprise Network (CEN), Express Connect, VPN Gateway, or Smart Access Gateway, add all CIDR blocks and IP addresses in the CIDR blocks to add when an on-premises database is connected to Alibaba Cloud over CEN, Express Connect, VPN Gateway, Smart Access Gateway, or Database Gateway column for the corresponding region in the following table to the following location when you use DTS for the first time and receive DTS whitelist expansion notifications.
The IP addresses or CIDR blocks of CEN. For more information, see the "Enable access to a cloud service from a Basic Edition transit router" section of the Access to cloud services topic.
The local CIDR block of IPsec-VPN. For more information, see Create and manage IPsec-VPN connections in single-tunnel mode.
The whitelist of on-premises databases.
If the source or destination database of the DTS instance is connected to Alibaba Cloud by using a public IP address, add all CIDR blocks and IP addresses in the CIDR blocks to add when an on-premises database is connected to Alibaba Cloud over the Internet column for the corresponding region in the following table to the following location when you use DTS for the first time and receive DTS whitelist expansion notifications.
Make sure that the CIDR blocks and IP addresses have been added to the network environment of the corresponding region for the DTS instance. Otherwise, after a disaster recovery of the DTS task, new devices may not be able to connect to the instance. As a result, task delays or interruptions occur.
If the CIDR blocks of DTS servers are automatically or manually added to a whitelist of the database instance or ECS security group rules, security risks may arise. Therefore, before you use DTS to migrate data, you must understand the potential risks and take preventive measures, including but not limited to the following measures: enhance the security of your account and password, limit the ports that are exposed, authenticate API calls, regularly check the whitelist or ECS security group rules and forbid unauthorized CIDR blocks, and connect the database to DTS by using Express Connect, VPN Gateway, or Smart Access Gateway.
After your DTS task is completed or released, we recommend that you detect and remove the added CIDR blocks from the whitelist of the database instance or ECS security group rules.
Data migration and change tracking
Data migration
If the source or destination database of a data migration task is a self-managed database with a public IP address, self-managed database without a public IP address or port number (connected over Database Gateway), self-managed database connected over CEN, or self-managed database connected over Express Connect, VPN Gateway, or Smart Access Gateway, you must modify the database security settings. Specifically, you must add the CIDR blocks of DTS servers that reside in the same region as the source or destination database to the security settings.
For example, the source database is deployed in the China (Shenzhen) region and the destination database is deployed in the China (Hangzhou) region. In this case, you must add the CIDR blocks of DTS servers in the China (Hangzhou) region to the security settings of the source and destination databases.
Change tracking
If the database of a change tracking task is a self-managed database with a public IP address, self-managed database without a public IP address or port number (connected over Database Gateway), or self-managed database connected over Express Connect, VPN Gateway, or Smart Access Gateway, you must modify the database security settings. Specifically, you must add the CIDR blocks of DTS servers that reside in the same region as the database to the security settings.
If the source or destination database is a self-managed database with a public IP address, and the region in which the self-managed database resides does not support DTS, we recommend that you add the IP address of the DTS server in the China (Hangzhou) region.
Region name | Region ID | CIDR blocks to add when an on-premises database is connected to Alibaba Cloud over the Internet | CIDR blocks to add when an on-premises database is connected to Alibaba Cloud over CEN, Express Connect, VPN Gateway, Smart Access Gateway, or Database Gateway |
China (Hangzhou) | cn-hangzhou | 101.37.149.3,106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,112.124.239.0/26,112.124.6.175,114.55.36.104,118.31.243.0/24,118.31.38.161,120.55.60.183,120.55.60.232,121.199.28.129,121.40.155.35,121.41.104.73,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.96.76.20,47.96.95.82,47.97.118.150,47.97.125.64,47.97.98.27,47.98.101.12,47.98.125.188,47.98.52.255,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.52.0/24,100.104.61.128/26,100.104.244.64/26,100.104.216.192/26,100.104.85.0/26,100.104.221.128/26,100.104.2.0/26,100.104.251.192/26,100.104.159.64/26,100.104.216.128/26,100.104.148.192/26,100.104.239.64/26,100.104.114.0/26,100.104.0.192/26,100.104.13.192/26 |
China (Shanghai) | cn-shanghai | 101.132.174.63,101.132.223.204,101.133.205.192/26,101.226.33.0/26,101.226.33.128/26,101.226.33.64/26,101.226.35.64/26,101.91.139.192/26,101.91.141.0/26,101.91.141.128/26,101.91.141.64/26,106.11.224.0/24,106.11.251.128/26,106.11.251.192/26,106.11.254.128/26,106.11.254.192/26,106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,106.14.4.132,106.15.248.89,106.15.75.203,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,112.65.93.0/26,112.65.93.128/26,112.65.93.64/26,116.128.219.0/26,116.128.219.128/26,116.128.219.64/26,117.185.224.0/24,117.185.232.128/26,117.185.232.192/26,117.185.235.0/26,117.185.235.64/26,118.31.243.0/24,139.196.49.138,139.196.52.31,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.197.128/26,140.205.197.192/26,140.205.198.0/26,140.205.198.64/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,140.206.221.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,210.51.60.64/26,47.100.137.82,47.100.160.244,47.101.109.0/24,47.101.166.207,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.103.166.128/26,47.103.166.192/26,47.103.166.64/26,47.103.170.0/26,47.103.170.128/26,47.103.170.192/26,47.103.171.0/26,47.103.171.64/26,47.103.194.109,47.103.197.53,47.103.23.116,59.82.32.0/24,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,8.132.214.192/26,8.132.215.0/26,8.132.215.128/26,8.132.215.64/26 | 100.104.205.0/24,100.104.226.128/26,100.104.149.64/26,100.104.241.128/26,100.104.177.128/26,100.104.203.192/26,100.104.113.0/26,100.104.187.0/26,100.104.17.0/26,100.104.33.192/26,100.104.3.192/26 |
China (Qingdao) | cn-qingdao | 106.11.184.0/24,106.11.185.0/24,106.11.40.64/26,106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,115.28.200.55,115.28.216.250,118.190.133.13,118.190.157.247,118.190.207.194,118.190.207.25,118.31.243.0/24,120.27.53.203,120.27.72.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.146.128/26,203.119.146.192/26,203.119.147.0/24,203.119.148.0/24,203.119.149.0/24,203.119.150.0/24,203.119.151.0/24,203.119.159.192/26,203.119.182.192/26,203.119.183.0/24,203.119.184.0/24,203.119.185.0/24,203.119.186.0/24,203.119.187.0/24,203.119.188.0/24,203.119.189.0/24,203.119.190.0/24,203.119.191.0/26,203.119.191.128/26,203.119.191.64/26,203.119.240.0/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,39.98.96.0/24,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.104.19.209,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.72.0/24,100.104.35.192/26,100.104.12.0/26,100.104.111.0/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.78.128/26 |
China (Beijing) | cn-beijing | 101.200.116.192/26,101.200.141.67,101.200.182.245,101.200.189.99,101.200.194.86,101.200.20.0/26,101.200.209.158,101.200.50.74,101.200.72.175,106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,111.13.119.128/26,111.13.119.192/26,111.13.22.64/26,111.13.246.192/26,111.206.225.128/26,111.206.225.64/26,112.126.111.128/26,112.126.111.192/26,112.126.112.0/26,112.126.112.64/26,114.250.54.0/26,114.250.54.64/26,114.250.62.0/24,118.31.243.0/24,123.56.186.180,123.56.244.9,123.56.43.201,123.57.136.105,123.57.238.231,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,182.92.137.0/24,182.92.157.129,182.92.17.128/26,182.92.17.192/26,182.92.196.155,182.92.32.128/26,182.92.32.192/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,39.105.58.165,39.107.223.0/24,39.107.7.0/26,39.107.7.64/26,39.156.175.0/24,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.93.10.168,47.93.21.67,47.93.22.174,47.94.167.117,47.94.2.56,47.94.94.233,47.95.241.173,49.7.152.0/24,49.7.153.0/24,59.110.38.253,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,60.205.112.5,60.205.157.204,60.205.165.226,60.205.166.109,60.205.222.185,60.205.243.19,8.131.132.0/26 | 100.104.11.64/26,100.104.128.192/26,100.104.143.0/26,100.104.183.0/24,100.104.200.64/26,100.104.201.0/26,100.104.213.64/26,100.104.227.192/26,100.104.232.128/26,100.104.236.128/26,100.104.247.64/26,100.104.29.0/26,100.104.84.128/26 |
China (Zhangjiakou) | cn-zhangbei | 100.70.8.0/24,106.11.184.0/24,106.11.185.0/24,106.11.201.0/24,106.11.222.128/26,106.11.222.192/26,106.11.222.64/26,106.11.223.0/26,106.11.40.64/26,106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,111.225.159.128/26,111.225.159.192/26,111.225.159.64/26,111.62.14.0/26,111.62.14.64/26,111.63.137.128/26,111.63.137.192/26,111.63.163.0/24,116.132.137.0/26,116.132.190.128/26,116.132.190.192/26,116.132.190.64/26,116.132.191.0/24,118.31.243.0/24,123.182.56.0/24,123.182.57.0/26,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.146.128/26,203.119.146.192/26,203.119.147.0/24,203.119.148.0/24,203.119.149.0/24,203.119.150.0/24,203.119.151.0/24,203.119.159.192/26,203.119.176.0/24,203.119.177.0/24,203.119.178.0/24,203.119.179.0/24,203.119.180.0/24,203.119.181.0/24,203.119.182.0/24,203.119.183.0/24,203.119.184.0/24,203.119.185.0/24,203.119.186.0/24,203.119.187.0/24,203.119.188.0/24,203.119.189.0/24,203.119.190.0/24,203.119.191.0/26,203.119.191.128/26,203.119.191.64/26,203.119.239.0/24,203.119.240.0/26,203.119.253.128/26,203.119.254.0/24,203.119.255.0/24,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,39.98.96.0/24,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.92.185.0/24,59.82.18.128/26,59.82.18.192/26,59.82.18.64/26,59.82.19.0/26,59.82.24.0/24,59.82.25.0/24,59.82.26.0/24,59.82.27.0/24,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,59.82.63.128/26,59.82.63.192/26,59.82.64.0/24,59.82.65.0/24,59.82.66.0/26,59.82.66.64/26,59.82.71.128/26,59.82.71.192/26,59.82.72.0/26,59.82.72.192/26,59.82.72.64/26,59.82.73.0/26,59.82.73.128/26,59.82.73.64/26,59.82.76.128/26,59.82.76.192/26,59.82.77.0/26,59.82.77.64/26,59.82.85.128/26,59.82.85.192/26,59.82.86.0/24,59.82.87.0/24,59.82.88.0/24,59.82.89.0/26,59.82.89.64/26,59.82.90.128/26,59.82.90.192/26,59.82.91.0/24,59.82.92.0/26,59.82.92.64/26 | 100.104.144.128/26,100.104.175.0/24,100.104.180.192/26,100.104.249.0/26,100.104.32.64/26,100.104.52.0/26,100.104.84.128/26 |
China (Hohhot) | cn-huhehaote | 39.102.199.128/26,39.102.199.192/26,39.102.199.64/26,39.102.224.0/26,39.104.199.192/26,39.104.220.0/24,39.104.62.152,39.104.72.87,39.104.78.173,39.104.79.122,39.104.86.0,39.99.77.0/26,39.99.77.128/26,39.99.77.64/26,59.82.30.128/26,59.82.30.192/26,59.82.30.64/26,59.82.31.0/26 | 100.104.72.0/24,100.104.145.64/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26,100.104.37.128/26,100.104.218.128/26,100.104.250.0/26,100.104.122.128/26,100.104.158.192/26 |
China (Ulanqab) | cn-wulanchabu | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,121.89.103.128/26,121.89.103.192/26,121.89.103.64/26,121.89.104.0/26,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,39.101.0.128/26,39.101.0.192/26,39.101.0.64/26,39.101.5.0/26,39.101.7.0/24,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,59.82.126.0/24,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,8.130.121.252,8.130.122.110,8.130.48.34,8.130.69.168,8.130.69.173 | 100.104.182.128/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.78.128/26,100.104.205.192/26,100.104.152.128/26,100.104.199.192/26,100.104.120.0/26 |
China (Shenzhen) | cn-shenzhen | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,112.74.44.248,118.31.243.0/24,120.24.177.221,120.77.195.128/26,120.77.195.192/26,120.77.195.64/26,120.77.61.108,120.78.179.12,120.79.68.184,120.79.71.173,120.79.72.217,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.106.63.0/24,47.112.83.192/26,47.112.84.0/26,47.112.84.128/26,47.112.84.64/26,47.112.86.0/26,47.113.183.128/26,47.113.183.192/26,47.113.76.192/26,47.115.161.93,47.120.88.0/26,47.120.88.64/26,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.75.64/26,100.104.235.192/26,100.104.205.0/24,100.104.41.64/26,100.104.171.128/26,100.104.161.192/26,100.104.172.192/26,100.104.168.0/26,100.104.160.128/26,100.104.179.128/26,100.104.98.192/26,100.104.168.128/26 |
China (Heyuan) | cn-heyuan | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.113.157.128/26,47.113.157.192/26,47.113.157.64/26,47.113.158.0/26,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.147.192/26,100.104.76.192/26,100.104.246.192/26,100.104.106.192/26,100.104.210.128/26,100.104.48.128/26 |
China (Guangzhou) | cn-guangzhou | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,8.134.0.128/26,8.134.0.192/26,8.134.0.64/26,8.134.5.0/26,8.134.79.141,8.134.79.143 | 100.104.132.64/26,100.104.240.128/26,100.104.122.128/26,100.104.233.0/26,100.104.166.64/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26 |
China (Chengdu) | cn-chengdu | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.108.45.128/26,47.108.45.192/26,47.108.47.0/26,47.108.47.64/26,47.109.5.0/26,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26,8.137.26.128/26,8.137.26.192/26,8.137.26.64/26,8.137.29.0/26 | 100.104.76.192/26,100.104.145.64/26,100.104.235.192/26,100.104.127.0/26,100.104.166.64/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.149.128/26,100.104.177.0/26 |
China (Hong Kong) | cn-hongkong | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.240.180.192/26,47.240.195.0/26,47.240.195.128/26,47.240.195.64/26,47.243.0.32/28,47.56.45.128/26,47.56.45.192/26,47.89.12.225,47.89.39.119,47.90.24.0/26,47.90.24.64/26,47.90.37.175,47.90.38.29,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.233.0/24,100.104.177.192/26,100.104.158.192/26,100.104.180.192/26,100.104.120.0/26,100.104.2.64/26,100.104.242.64/26,100.104.187.64/26 |
Singapore | ap-southeast-1 | 161.117.146.128/26,161.117.146.192/26,161.117.164.0/26,161.117.164.64/26,161.117.172.0/28 | 100.104.188.0/24,100.104.207.128/26,100.104.12.0/26,100.104.179.64/26,100.104.41.64/26,100.104.59.64/26,100.104.91.64/26,100.104.111.64/26,100.104.44.0/26,100.104.238.64/26 |
Australia (Sydney) | ap-southeast-2 | 47.252.148.128/26,47.252.148.192/26,47.252.148.64/26,47.252.149.0/26,47.252.149.128/26,47.252.149.192/26,47.252.150.0/26,47.252.150.64/26 | 100.104.233.0/24,100.104.3.128/26,100.104.193.128/26,100.104.153.64/26,100.104.48.128/26,100.104.69.0/26,100.104.87.192/26 |
Malaysia (Kuala Lumpur) | ap-southeast-3 | 47.250.29.0/24,47.250.30.0/24,47.250.34.128/28 | 100.104.5.0/24,100.104.36.0/26,100.104.234.192/26,100.104.76.192/26,100.104.69.0/26,100.104.87.192/26,100.104.158.192/26,100.104.250.0/26 |
Indonesia (Jakarta) | ap-southeast-5 | 147.139.132.101,147.139.133.46,147.139.156.0/26,147.139.156.128/26,147.139.156.64/26,147.139.165.206,147.139.179.168,149.129.230.192/26,8.215.147.0/28 | 100.104.175.0/24,100.104.35.192/26,100.104.235.192/26,100.104.12.0/26,100.104.111.0/26,100.104.158.192/26,100.104.37.128/26,100.104.218.128/26 |
Philippines (Manila) | ap-southeast-6 | 8.212.136.128/26,8.212.136.192/26,8.212.136.64/26,8.212.137.0/26 | 100.104.153.64/26,100.104.76.192/26,100.104.246.192/26,100.104.158.192/26,100.104.37.128/26,100.104.218.128/26,100.104.250.0/26 |
Thailand (Bangkok) | ap-southeast-7 | 8.213.162.128/26,8.213.162.192/26,8.213.162.64/26,8.213.163.0/26 | 100.104.150.192/26,100.104.75.64/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26 |
India (Mumbai) | ap-south-1 | 147.139.21.0/24,147.139.23.0/26,147.139.23.128/26,147.139.23.64/26,147.139.26.0/28,149.129.165.192/26 | 100.104.8.0/24,100.104.127.0/26,100.104.177.192/26,100.104.12.0/26,100.104.111.0/26,100.104.69.0/26 |
Japan (Tokyo) | ap-northeast-1 | 47.245.18.128/26,47.245.18.192/26,47.245.51.0/24,47.245.51.0/26,47.245.51.64/26,47.91.0.128/26,47.91.0.192/26,8.209.192.160/28 | 100.104.112.0/24,100.104.117.192/26,100.104.12.0/26,100.104.166.64/26,100.104.179.64/26,100.104.108.128/26,100.104.100.128/26,100.104.136.192/26 |
US (Silicon Valley) | us-west-1 | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,198.11.156.192/26,198.11.157.0/26,198.11.157.128/26,198.11.157.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.251.136.112/28,47.252.71.128/26,47.252.71.192/26,47.252.90.0/26,47.252.90.64/26,47.88.1.17,47.88.10.217,47.88.15.174,47.88.6.196,47.88.98.0/24,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.175.0/24,100.104.48.128/26,100.104.166.64/26,100.104.108.128/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.242.64/26 |
US (Virginia) | us-east-1 | 106.11.73.128/26,106.11.73.192/26,106.11.76.0/26,106.11.76.64/26,110.75.130.128/26,110.75.130.192/26,110.75.230.0/24,110.75.235.0/24,110.76.0.0/24,110.76.11.0/24,110.76.2.0/24,110.76.8.0/26,110.76.8.64/26,110.76.9.0/24,118.31.243.0/24,140.205.108.0/26,140.205.108.128/26,140.205.108.64/26,140.205.196.0/24,140.205.197.0/26,140.205.41.192/26,140.205.41.64/26,140.205.47.0/24,140.205.80.64/26,198.11.156.192/26,198.11.157.0/26,198.11.157.128/26,198.11.157.64/26,203.119.159.192/26,203.209.225.128/26,203.209.225.192/26,203.209.247.128/26,203.209.247.192/26,47.102.181.128/26,47.102.181.192/26,47.102.234.0/26,47.102.234.64/26,47.250.29.0/24,47.252.91.0/24,47.253.64.0/28,47.88.98.0/24,59.82.46.128/26,59.82.46.192/26,59.82.46.64/26,59.82.47.0/26 | 100.104.233.0/24,100.104.240.128/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26,100.104.111.0/26,100.104.122.128/26,100.104.87.192/26,100.104.179.64/26 |
Germany (Frankfurt) | eu-central-1 | 47.245.155.0/28,47.254.165.128/26,47.254.165.192/26,47.254.165.64/26,47.254.180.0/24,8.209.86.0/26 | 100.104.5.0/24,100.104.193.128/26,100.104.161.64/26,100.104.89.128/26,100.104.177.0/26,100.104.224.0/26,100.104.92.128/26,100.104.62.64/26,100.104.216.192/26 |
UK (London) | eu-west-1 | 198.11.156.192/26,198.11.157.0/26,198.11.157.128/26,198.11.157.64/26,47.88.98.0/24,8.208.72.0/24,8.208.73.0/24,8.208.75.64/28 | 100.104.133.64/26,100.104.207.128/26,100.104.87.192/26,100.104.145.64/26,100.104.235.192/26,100.104.75.64/26,100.104.132.64/26 |
UAE (Dubai) | me-east-1 | 47.254.165.128/26,47.254.165.192/26,47.254.165.64/26,8.209.86.0/26 | 100.104.205.0/24,100.104.161.0/26,100.104.53.0/26,100.104.111.128/26,100.104.248.128/26 |
South Korea (Seoul) | ap-northeast-2 | 149.129.13.0/26,149.129.13.64/26,149.129.14.128/26,149.129.14.192/26 | 100.104.119.128/26,100.104.153.64/26,100.104.76.192/26,100.104.246.192/26,100.104.106.192/26,100.104.210.128/26 |
SAU (Riyadh) | me-central-1 | 8.213.0.128/26,8.213.0.192/26,8.213.16.111,8.213.16.123,8.213.16.17,8.213.16.59,8.213.16.91,8.213.5.0/26,8.213.5.64/26,8.213.6.0/24 | 100.104.106.192/26,100.104.145.64/26,100.104.210.128/26,100.104.48.128/26,100.104.69.0/26,100.104.76.192/26,100.104.87.192/26 |
Data synchronization
If the source and destination databases of a data synchronization task are self-managed databases without a public IP address or port number (connected over Database Gateway), self-managed databases connected over CEN, or self-managed databases connected over Express Connect, VPN Gateway, or Smart Access Gateway, you must modify the database security settings based on your business requirements.
If you want to allow DTS to access the source database, you must modify the security settings of the source database. Specifically, you must add the CIDR blocks of DTS servers that reside in the same regions as the source and destination databases to the security settings of the source database.
For example, the source database is deployed in the China (Shenzhen) region and the destination database is deployed in the China (Hangzhou) region. In this case, you must add the CIDR blocks of DTS servers in both regions to the security settings of the source database.
If you want to allow DTS to access the destination database, you must modify the security settings of the destination database. Specifically, you must add the CIDR blocks of DTS servers that reside in the same region as the destination database to the security settings of the destination database.
For example, the source database is deployed in the China (Shenzhen) region and the destination database is deployed in the China (Hangzhou) region. In this case, you must add the CIDR blocks of DTS servers in the China (Hangzhou) region to the security settings of the destination database.
Data synchronization does not support databases connected to Alibaba Cloud by using a public IP address.
When an on-premises database is connected to Alibaba Cloud over CEN, Express Connect, VPN Gateway, Smart Access Gateway, or Database Gateway, the CIDR block added to the database security settings is a subnet range of the 100.64.0.0/10 CIDR block of Alibaba Cloud.
Region name | Region ID | CIDR blocks to add when an on-premises database is connected to Alibaba Cloud over CEN, Express Connect, VPN Gateway, Smart Access Gateway, or Database Gateway |
China (Hangzhou) | cn-hangzhou | 100.104.52.0/24,100.104.61.128/26,100.104.244.64/26,100.104.216.192/26,100.104.85.0/26,100.104.221.128/26,100.104.2.0/26,100.104.251.192/26,100.104.159.64/26,100.104.216.128/26,100.104.148.192/26,100.104.239.64/26,100.104.114.0/26,100.104.0.192/26,100.104.13.192/26 |
China (Shanghai) | cn-shanghai | 100.104.205.0/24,100.104.226.128/26,100.104.149.64/26,100.104.241.128/26,100.104.177.128/26,100.104.203.192/26,100.104.113.0/26,100.104.187.0/26,100.104.17.0/26,100.104.33.192/26,100.104.3.192/26 |
China (Qingdao) | cn-qingdao | 100.104.72.0/24,100.104.35.192/26,100.104.12.0/26,100.104.111.0/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.78.128/26 |
China (Beijing) | cn-beijing | 100.104.11.64/26,100.104.128.192/26,100.104.143.0/26,100.104.183.0/24,100.104.200.64/26,100.104.201.0/26,100.104.213.64/26,100.104.227.192/26,100.104.232.128/26,100.104.236.128/26,100.104.247.64/26,100.104.29.0/26,100.104.84.128/26 |
China (Zhangjiakou) | cn-zhangbei | 100.104.144.128/26,100.104.175.0/24,100.104.180.192/26,100.104.249.0/26,100.104.32.64/26,100.104.52.0/26,100.104.84.128/26 |
China (Hohhot) | cn-huhehaote | 100.104.72.0/24,100.104.145.64/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26,100.104.37.128/26,100.104.218.128/26,100.104.250.0/26,100.104.122.128/26,100.104.158.192/26 |
China (Ulanqab) | cn-wulanchabu | 100.104.182.128/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.78.128/26,100.104.205.192/26,100.104.152.128/26,100.104.199.192/26,100.104.120.0/26 |
China (Shenzhen) | cn-shenzhen | 100.104.75.64/26,100.104.235.192/26,100.104.205.0/24,100.104.41.64/26,100.104.171.128/26,100.104.161.192/26,100.104.172.192/26,100.104.168.0/26,100.104.160.128/26,100.104.179.128/26,100.104.98.192/26,100.104.168.128/26 |
China (Heyuan) | cn-heyuan | 100.104.147.192/26,100.104.76.192/26,100.104.246.192/26,100.104.106.192/26,100.104.210.128/26,100.104.48.128/26 |
China (Guangzhou) | cn-guangzhou | 100.104.132.64/26,100.104.240.128/26,100.104.122.128/26,100.104.233.0/26,100.104.166.64/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26 |
China (Chengdu) | cn-chengdu | 100.104.76.192/26,100.104.145.64/26,100.104.235.192/26,100.104.127.0/26,100.104.166.64/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.149.128/26,100.104.177.0/26 |
China (Hong Kong) | cn-hongkong | 100.104.233.0/24,100.104.177.192/26,100.104.158.192/26,100.104.180.192/26,100.104.120.0/26,100.104.2.64/26,100.104.242.64/26,100.104.187.64/26 |
Singapore | ap-southeast-1 | 100.104.188.0/24,100.104.207.128/26,100.104.12.0/26,100.104.179.64/26,100.104.41.64/26,100.104.59.64/26,100.104.91.64/26,100.104.111.64/26,100.104.44.0/26,100.104.238.64/26 |
Australia (Sydney) | ap-southeast-2 | 100.104.233.0/24,100.104.3.128/26,100.104.193.128/26,100.104.153.64/26,100.104.48.128/26,100.104.69.0/26,100.104.87.192/26 |
Malaysia (Kuala Lumpur) | ap-southeast-3 | 100.104.5.0/24,100.104.36.0/26,100.104.234.192/26,100.104.76.192/26,100.104.69.0/26,100.104.87.192/26,100.104.158.192/26,100.104.250.0/26 |
Indonesia (Jakarta) | ap-southeast-5 | 100.104.175.0/24,100.104.35.192/26,100.104.235.192/26,100.104.12.0/26,100.104.111.0/26,100.104.158.192/26,100.104.37.128/26,100.104.218.128/26 |
Philippines (Manila) | ap-southeast-6 | 100.104.153.64/26,100.104.76.192/26,100.104.246.192/26,100.104.158.192/26,100.104.37.128/26,100.104.218.128/26,100.104.250.0/26 |
Thailand (Bangkok) | ap-southeast-7 | 100.104.150.192/26,100.104.75.64/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26 |
India (Mumbai) | ap-south-1 | 100.104.8.0/24,100.104.127.0/26,100.104.177.192/26,100.104.12.0/26,100.104.111.0/26,100.104.69.0/26 |
Japan (Tokyo) | ap-northeast-1 | 100.104.112.0/24,100.104.117.192/26,100.104.12.0/26,100.104.166.64/26,100.104.179.64/26,100.104.108.128/26,100.104.100.128/26,100.104.136.192/26 |
US (Silicon Valley) | us-west-1 | 100.104.175.0/24,100.104.48.128/26,100.104.166.64/26,100.104.108.128/26,100.104.100.128/26,100.104.136.192/26,100.104.16.64/26,100.104.242.64/26 |
US (Virginia) | us-east-1 | 100.104.233.0/24,100.104.240.128/26,100.104.132.64/26,100.104.177.192/26,100.104.12.0/26,100.104.111.0/26,100.104.122.128/26,100.104.87.192/26,100.104.179.64/26 |
Germany (Frankfurt) | eu-central-1 | 100.104.5.0/24,100.104.193.128/26,100.104.161.64/26,100.104.89.128/26,100.104.177.0/26,100.104.224.0/26,100.104.92.128/26,100.104.62.64/26,100.104.216.192/26 |
UK (London) | eu-west-1 | 100.104.133.64/26,100.104.207.128/26,100.104.87.192/26,100.104.145.64/26,100.104.235.192/26,100.104.75.64/26,100.104.132.64/26 |
UAE (Dubai) | me-east-1 | 100.104.205.0/24,100.104.161.0/26,100.104.53.0/26,100.104.111.128/26,100.104.248.128/26 |
South Korea (Seoul) | ap-northeast-2 | 100.104.119.128/26,100.104.153.64/26,100.104.76.192/26,100.104.246.192/26,100.104.106.192/26,100.104.210.128/26 |
SAU (Riyadh) | me-central-1 | 100.104.106.192/26,100.104.145.64/26,100.104.210.128/26,100.104.48.128/26,100.104.69.0/26,100.104.76.192/26,100.104.87.192/26 |