All Products
Search
Document Center

Simple Message Queue (formerly MNS):Access control

Last Updated:Jun 17, 2026

Simple Message Queue (formerly MNS) allows you to control client access to public endpoints of Simple Message Queue (formerly MNS). You can deny all public endpoint requests or allow access only from specific IP addresses.

How it works

  • Disable public access: Disables public access so that only connections from a Virtual Private Cloud (VPC) are allowed.

  • Allow access from specific IP addresses: When public access is enabled, only IP addresses or CIDR blocks in the IP address whitelist can access the public endpoint.

Supported regions

Access control is available only in the China (Beijing), China (Shanghai), and China (Guangzhou) regions.

Add to the IP whitelist

  1. Log on to the SMQ console. In the left-side navigation pane, click Access Control.

  2. In the top navigation bar, select a region. Example: China (Beijing).

  3. On the Access Control page, on the Public Endpoint tab, click Create an IP address whitelist.

  4. In the Create an IP address whitelist panel, enter one or more IP addresses or CIDR blocks, and then click OK.

    Note

    You can add multiple IP addresses or CIDR blocks at a time. Separate them with semicolons (;) or commas (,).

View the IP whitelist

  1. On the Access Control page, click the Public Endpoint tab.

  2. The IP Address Whitelist list displays all whitelisted IP addresses for the current public endpoint.

Delete from the IP whitelist

  1. On the Access Control page, click the Public Endpoint tab.

  2. In the IP Address Whitelist list, find the target IP address or CIDR block, and then click Delete in the Action column.

  3. In the Delete IP Whitelist dialog box, click OK.

    Important

    After an IP address is removed from the IP address whitelist, the corresponding client can no longer connect to the Simple Message Queue (formerly MNS) service. Proceed with caution.

Disable public access

  1. On the Access Control page, click the Public Endpoint tab.

  2. Turn off the Allow Access switch next to Access Control.

  3. In the Are you sure you want to deny all accesses from the public IP address? dialog box, click OK.

    Important

    After you disable public access, the system blocks all requests from public endpoints and returns an error. Proceed with caution.