IP address whitelists are used to specify whether clients can access ApsaraMQ for RocketMQ instances. You can configure an IP address whitelist for an ApsaraMQ for RocketMQ instance to allow clients in specific CIDR blocks to access the instance.
Feature description
After you create an ApsaraMQ for RocketMQ instance, the default CIDR block in the IP address whitelist is 0.0.0.0/0, which specifies that client IP addresses in all CIDR blocks can access the instance.
If you configure an IP address whitelist for an ApsaraMQ for RocketMQ instance, only client IP addresses in the IP address whitelist can access the instance.
You can add public IP addresses, internal IP addresses, or CIDR blocks to an IP address whitelist.
Usage notes
After you remove an IP address from an IP address whitelist, the corresponding client can no longer access the ApsaraMQ for RocketMQ instance. Proceed with caution when you remove an IP address from an IP address whitelist.
Configure an IP address whitelist
Log on to the ApsaraMQ for RocketMQ console. In the left-side navigation pane, click Instances.
In the top navigation bar, select a region, such as China (Hangzhou). On the Instances page, click the name of the instance that you want to manage.
In the left-side navigation pane, click Access Control. On the page that appears, click the IP Address Whitelist tab.
On the IP Address Whitelist tab, click Add IP Address. In the panel that appears, specify one or more IP addresses or CIDR blocks and click OK.
NoteSeparate multiple IP addresses or CIDR blocks with semicolons (;) or commas (,).