Configure subscription CIDR allow list

The CIDR allow list permits traffic between a range of IP addresses and the Redis Cloud VPC.

The CIDR allow list lets you restrict traffic to your Redis Cloud database. When you configure an allow list, only the IP addresses defined in the list can connect to the database. Traffic from all other IP addresses is blocked.

If you use a self-managed, external cloud account to host your Redis Cloud deployment, you can configure a subscription-wide allow list to restrict traffic to all databases associated with the subscription.

The subscription CIDR allow list defines a range of IP addresses and AWS security groups that control inbound and outbound traffic to the Redis Cloud VPC. When you add security groups to the allow list, you can also use the same security groups to manage access to your application.

Allow IP address or security group

To add IP addresses or AWS security groups to a subscription's allow list:

1. From the Redis Cloud console menu, select Subscriptions and then select your subscription from the list.

2. Select Connectivity > Allow List.

3. If the allow list is empty, select Add allow list.

4. Select an entry Type from the list:

   

5. In the Value box, enter one of these options:

   • An IP address in CIDR format

   • The AWS security group ID

6. Select check to add the entry to the allow list.

7. To allow additional IP addresses or security groups:

   1. Select Add entry.

   2. Select the new entry's Type, enter the Value, and select check to add it to the allow list.

      

8. Select Apply all changes to apply the allow list updates.