Introduction
Some organizations restrict infrastructure access to specific IP address ranges to enhance security and prevent unauthorized access. To accommodate this need, Komodor introduced the CIDR Whitelist feature to further empower account-admins to have greater granularity as to access control.
Overview
By configuring a CIDR whitelist, accounts can limit access to Komodor from only the IP ranges specified in the CIDR. Both IPv6 and IPv4 are supported. Komodor also logs any failed login attempts from unauthorized IP addresses in the Audit screen.
How to Configure CIDR Whitelist
- Navigate to the Settings page.
- Select CIDR Whitelist.
- Click Add CIDR.
- Enter the CIDR and provide a description for the IP range.
- Click Save to apply the changes.
Note
- The IP/CIDR whitelist feature does not support RBAC Cluster Sync.
If an incorrect IP or IP group is added, you will not be able to save the configuration. The same rule applies when editing an existing CIDR group.
When adding a CIDR, the IP address entered must be the start of the range. For example, the range 192.168.0.0 - 192.168.255.255 should be written as 192.168.0.0/16.
Comments
0 comments
Please sign in to leave a comment.