Creating a Trustlist
After creating an RDS-PostgreSQL instance, the system allows all IPs to access the instance by default. Or, you can create a trustlist to allow specific IPs to access the instance.
Application Scenarios
Trustlist refers to the list of IPs that allow access to an RDS-PostgreSQL instance. Setting a trustlist allows the instances to obtain a high level of access security.
² Note
• Setting a trustlist does not affect the proper operation of the instance.
• The default trustlist grouping (default) cannot be deleted but can only be emptied.
• The default trustlist grouping contains only 0.0.0.0/0, indicating that any IP can access the instance.
Operation Method
1. Log in to the eSurfing Cloud official website.
2. Click Console in the upper right corner to jump to the Console page.
3. In the upper left corner, click
and select Region.
4. In the database category, find RDS-PostgreSQL and click to go to the RDS-PostgreSQL Console.
5. Click the Data Security menu bar, select Trustlist Management, and go to the Trustlist Management page. Select an instance, click Create a Trustlist Group, and fill in the group name and intra-group trustlist in the pop-up window.
a. Created trustlist group names are unique on the same instance.
b. For the same instance, the trustlist IP list of different groups can be repeated, and the union of the IPs of all groups takes effect.
c. If two IPs are set in the trustlist, and the scope of one IP includes the other IP, the IP with the largest range prevails. For example: for IPs of 0.0.0.0/0 and 192.168.10.2, the effect of 0.0.0.0/0 prevails.
6. Click OK to save the trustlist. Click Cancel to cancel the creation.
Release All
Application Scenarios
The Release All operation only changes the default group and sets the IP list under that group to 0.0.0.0/0. With this feature, you can quickly release the permission to access the instance while keeping the data of other groups unchanged. However, this operation may pose a big risk. Please operate with caution.
Operation Method
1. Log in to the eSurfing Cloud official website.
2. Click Console in the upper right corner to jump to the Console page.
3. In the upper left corner, click
and select Region.
4. In the database category, find RDS-PostgreSQL and click to go to the RDS-PostgreSQL Console.
5. Click the Data Security menu bar, select Trustlist Management, and go to the Trustlist Management page. Select an instance and click Release All.
6. Click OK to release the restrictions on accessing the instance and click Cancel to cancel the operation.
Modifying the Trustlist
Application Scenarios
RDS-PostgreSQL allows you to modify existing trustlists.
² Note
Modifying a trustlist does not affect the proper operation of the instance.
The group name of the default trustlist group (default) cannot be modified, and only the trustlist IP list within the group can be modified.
Operation Method
1. Log in to the eSurfing Cloud official website.
2. Click Console in the upper right corner to jump to the Console page.
3. In the upper left corner, click
and select Region.
4. In the database category, find RDS-PostgreSQL and click to go to the RDS-PostgreSQL Console.
5. Click the Data Security menu bar, select Trustlist Management, and go to the Trustlist Management page. Select an instance, select a trustlist group, and click Modify. In the pop-up window, you can modify the name of the trustlist group and the trustlist IP list in the group.
a. Created trustlist group names are unique on the same instance.
b. For the same instance, the trustlist IP list of different groups can be repeated, and the union of the IPs of all groups takes effect.
c. If two IPs are set in the trustlist, and the scope of one IP includes the other IP, the IP with the largest range prevails. For example: for IPs of 0.0.0.0/0 and 192.168.10.2, the effect of 0.0.0.0/0 prevails.
6. Click OK to save the trustlist. Click Cancel to cancel the modification.
Emptying the Trustlist
By emptying the trustlist, only local access to the instance is allowed, that is, the trustlist IP list is set to 127.0.0.1.
Application Scenarios
Emptying the trustlist only works on the current group. You can use this operation if you do not want external IP to access the instance.
² Note
Emptying the trustlist does not affect the proper operation of the instance.
The trustlist only works for the current group. If there are other groups, the trustlist IP list is the union of all groups.
Emptying the trustlist does not delete the trustlist group. It only sets the trustlist list within the group to 127.0.0.1.
Operation Method
1. Log in to the eSurfing Cloud official website.
2. Click Console in the upper right corner to jump to the Console page.
3. In the upper left corner, click
and select Region.
4. In the database category, find RDS-PostgreSQL and click to go to the RDS-PostgreSQL Console.
5. Click the Data Security menu bar, select Trustlist Management, and go to the Trustlist Management page. Select an instance and click Empty.
6. Click OK to empty the trustlist. Click Cancel to cancel the operation.
Deleting a Trustlist
By deleting the trustlist, you can delete the trustlist.
Application Scenarios
This operation will delete the trustlist group and also clear the grouped trustlist IP list.
² Note
Deleting the trustlist does not affect the proper operation of the instance.
Deleting the trustlist will not delete the default group (default).
Operation Method
1. Log in to the eSurfing Cloud official website.
2. Click Console in the upper right corner to jump to the Console page.
3. In the upper left corner, click
and select Region.
4. In the database category, find RDS-PostgreSQL and click to go to the RDS-PostgreSQL Console.
5. Click the Data Security menu bar, select Trustlist Management, and go to the Trustlist Management page. Select an instance and click Delete.
6. Click OK to delete the trustlist. Click Cancel to cancel the modification.