Configuring Cross-CIDR Access
If your client and the replica set instance are deployed in different CIDR blocks and the client CIDR block is not 192.168.0.0/16, 172.16.0.0/12, or 10.0.0.0/8 , you can configure Access Across CIDR Blocks for the instance to communicate with your client.
This section describes how to configure cross-CIDR access for an instance.
Precautions
- Only replica set instances support this function.
- During the configuration of cross-CIDR access, services are running properly without interruption or intermittent disconnection.
- If the client and replica set instance are in different VPCs and CIDR blocks, configure a VPC peering connection by referring to VPC Peering Connection in Virtual Private Cloud User Guide.
Procedure
- Log in to the management console.
- Click
in the upper left corner and select a region and a project. - Click Service List. Under Database, click Document Database Service to go to the DDS console.
- On the Instances page, click the instance name.
- In the navigation pane on the left, choose Connections.
- On the Private Connection tab, click Enable to the right of Cross-CIDR Access.Note
Up to 9 CIDR blocks can be configured, and each of them can overlap but they cannot be the same. That is, the source CIDR blocks can overlap but cannot be the same. The CIDR blocks cannot start with 127. The allowed IP mask ranges from 8 to 32.
- View the change results. After cross-CIDR access is enabled, Enabled is displayed to the right of Cross-CIDR Access.
If you need to change the client CIDR block, click Change to the right of Cross-CIDR Access.
Parent topic: Connection Management
- Precautions
- Procedure