Configure a whitelist

To ensure the security and stability of ApsaraDB for Lindorm (Lindorm), the system prevents devices from accessing Lindorm instances by default. Before you use a Lindorm instance, configure a whitelist for the instance to allow external devices to access the instance. The security of Lindorm instances can be enhanced if you properly configure whitelists. We recommend that you maintain your whitelists on a regular basis.

1. In the left-side navigation pane, click Access Control.
2. Click Modify Whitelist.
3. In the Modify Whitelist dialog box, add the IP addresses or CIDR blocks from which you want to allow access to the instance to the whitelist.
   Note

   • You can specify the IP addresses or CIDR blocks in following formats:
     • A single IP address can be specified in the 192.0.XX.XX.XX format.
     • IP address ranges support CIDR blocks. CIDR blocks can be specified in the 192.0.XX.XX/24 format. The suffix /24 indicates that the prefix of the CIDR block is 24 bits in length. You can replace 24 with a value that ranges from 1 to 32.
   • Separate multiple IP addresses or CIDR blocks with commas (,).
   • If the CIDR block is set to 0.0.0.0/0, all IP addresses can access the Lindorm instance. In this case, high security risks occur on Lindorm. Proceed with caution.
   • If the IP address is set to 127.0.0.1, all IP addresses are prohibited from accessing the Lindorm instance.
4. Click OK.