This topic describes how to add Elastic Compute Service (ECS) security groups to an ApsaraDB for Redis instance. Security groups facilitate client management and enhance connection security. A security group serves as a virtual firewall to limit the inbound and outbound traffic of the ECS instances that belong to this security group. After you add a security group to an ApsaraDB for Redis instance, all ECS instances in the security group are allowed to access the ApsaraDB for Redis instance.

Procedure

Note
  • Before you add a security group as a whitelist, make sure that the ApsaraDB for Redis instance and the ECS instances in the security group are deployed in the same VPC.
  • You cannot add ECS security groups as whitelists for Tair instances deployed in the following regions: China (Heyuan), China (Guangzhou), China (Nanjing), and China (Ulanqab).
  • You cannot add ECS security groups as whitelists for cloud disk-based Tair instances that use the cluster or read/write splitting architecture.
  1. Log on to the ApsaraDB for Redis console and go to the Instances page. In the top navigation bar, select the region in which the instance that you want to manage resides. Then, find the instance and click its ID.
  2. In the left-side navigation pane, click Whitelist Settings.
  3. Click Security Groups.
  4. On the Security Groups tab, click Add Security Group.
  5. In the dialog box that appears, select the security groups that you want to add as whitelists.

    You can use a security group name or security group ID to perform fuzzy search.

    Figure 1. Add security groups
    Add security groups
    Note You can add up to 10 security groups as whitelists for each Tair instance.
  6. Click OK.
  7. Optional: To remove all security groups, click Delete.