GuidesSecurity & Compliance

IP Access List

When public Internet access is unavoidable, Tacnode offers the IP access list feature. This feature allows users to restrict which machines can access the Nodegroup, reducing the risk of malicious attacks.

Tacnode only allows hosts specified in the IP access list to connect to the database, enhancing security. Administrator privileges are required to modify the access list. Reloading the configuration will affect the database service, so proceed with caution.

  • For security, the default access list for public network connections to the Nodegroup is initially empty, blocking all connections. Once public network access is enabled, it is crucial to establish an IP access list immediately; otherwise, network connection will be impossible.

  • Users can create multiple IP access list rules. A single rule can apply to several Nodegroups, and multiple rules can be assigned to one Nodegroup. These rules only apply to the Nodegroup with activated public network connections.

  • Enter a valid IPv4 address and an optional CIDR or a series of addresses separated by a comma.

  • Deleting Data Cloud will remove the associated access list rules within the Data Cloud. However, these rules cannot be deleted if they are linked to a Nodegroup.

Previous

Simple Permission Model Practice

Next

System Authorization