Define IP Address access control

By default the list is empty, meaning that there are no particular restrictions on access to your instance.

Before you begin

Role required: admin

Procedure

Navigate to System Security > IP Address Access Control to see a list of your IP access controls. You may need to activate this module.
You can add these types of rules:
  • Allow: any IP address in this range is allowed to connect to this instance.
  • Deny: any IP address in this range is not allowed to connect to this instance unless it is listed in an allow rule.
Note: These rules also affect transferring update sets. To ensure that IP Address Access Control does not cause update sets to fail, add the target instance as an exception on the source instance.

Example 1: Block a particular range

An example of how to block a particular range.

Let's say we want to block a particular range of IPs, say 64.236.16.0 – 64.236.16.255. Click "new" to add a new rule. Then fill it in as follows. Range Start and Range End must be specific IP addresses as seen in the examples, without asterisks or CIDR blocks.

Figure 1. Deny range

Example 2: Block everyone except a particular range

An example of how to block everyone except a particular range.

For example, you want to allow addresses between 64.236.16.0 and 64.236.16.255 to connect, but want to deny all other addresses. To do this, designate two rules, one to allow the designated range, and a second to deny addresses outside the range.

Click New and add a new rule. Then fill it in as follows.

Figure 2. Allow range

Add the deny rule.

Figure 3. Deny all