An IP address whitelist consists of IP addresses and CIDR blocks that are allowed to access your instance. This topic describes how to configure an IP address whitelist for an ApsaraDB MyBase for MySQL instance.

Prerequisites

An ApsaraDB MyBase for MySQL instance is created. For more information, see Create an ApsaraDB MyBase for MySQL instance.

Precautions

  • A maximum of 50 IP address whitelists can be configured for an ApsaraDB MyBase instance.
  • By default, the default IP address whitelist contains only 127.0.0.1. This indicates that no IP addresses can be used to access the instance. The default IP address whitelist cannot be deleted. You can only clear or modify the IP address settings of the whitelist.
  • After an IP address whitelist is configured, it takes effect in 1 minute.

Procedure

  1. Log on to the ApsaraDB MyBase console.
  2. In the upper-left corner of the page, select a region.
  3. In the left-side navigation pane, choose Instances > MySQL.
  4. Find the instance that you want to manage and click Details in the Actions column to go to the ApsaraDB RDS console.
  5. In the left-side navigation pane, click Data Security.
  6. On the Whitelist Settings tab, click Create Whitelist. In the Create Whitelist dialog box, enter a name in Whitelist Name and specify the IP addresses or CIDR blocks for instance access in IP Addresses. Then, click OK.
    Note
    • If you specify an IP address, the IP address is allowed to access the instance.
    • If you specify a CIDR block, all the IP addresses within the CIDR block are allowed to access the instance. For example, if you enter 192.168.0.0/24 in IP Addresses, all the IP addresses from 192.168.0.0 to 192.168.0.255 are allowed to access the instance.
    • If you need to specify multiple IP addresses and CIDR blocks, separate them with commas (,). Example: 192.168.0.1,192.168.0.0/24.
    • You can add a maximum of 1,000 IP addresses and CIDR blocks to IP address whitelists of an instance. If you need to specify a large number of IP addresses, we recommend that you combine the IP addresses into CIDR blocks, such as 10.10.10.0/24.
    • If you specify 0.0.0.0/0, all IP addresses are allowed to access the instance over the Internet. Proceed with caution.