Configuring an allowlist for Ephemeral Cloud database connections

On Ephemeral Cloud, you can limit database connections to specific IP addresses.

If you do not provide an allowlist, then the databases are publicly accessible from the Internet.

To display the database access settings:

1. In the Ephemeral navigation bar, click Admin Settings.

2. On the Admin Settings page, click Database Access.

Enabling the allowlist

To enable the allowlist, on the Database Access tab, toggle Enable IP Allowlist to the on position.

You must then add at least one item to the allowlist. If the allowlist is empty, then Enable IP Allowlist reverts to the off position.

Note that Structural Cloud workers are automatically allowlisted, to enable data generation from Structural to Ephemeral.

Editing the allowlist

To edit the current allowlist, click Edit.

Adding an allowlist item

To add an item to the allowlist:

1. To add a new entry to the list, click Add.

2. In the Label field, provide a descriptive label for the allowlist item.

3. In the IP Address/CIDR field, provide the IP address or range of IP addresses that is allowed access to databases. The IP address or range must be in CIDR notation.

Editing an allowlist item

To change the configuration of an allowlist item:

1. Click the edit icon for the allowlist item. The allowlist item fields become editable.

2. In the fields, change the allowlist item settings.

Deleting an allowlist item

To remove an allowlist item:

1. Click the delete icon for the allowlist item.

2. On the confirmation panel, click Delete.

Saving changes to the allowlist

To save the current allowlist configuration, click Save.