Network Firewall
The e6data Network Firewall feature allows users to manage IP whitelisting, enabling or restricting access to e6data at the cluster level.
Last updated
The e6data Network Firewall feature allows users to manage IP whitelisting, enabling or restricting access to e6data at the cluster level.
Last updated
When setting up network firewall rules, e6data provides two connectivity options:
Gateway Connectivity: This option allows users to connect external clients without direct connectivity. Contact e6data support for more details on this configuration.
TLS Connectivity: For enterprise-level users, this option allows secure client connections to e6data clusters using either the e6data Python connector or JDBC drivers.
Note: Network firewalls can only be created with a serverless workspace.
To create a network firewall rule, follow these steps:
Step-by-Step Guide
Access Connectivity Settings:
Go to Connectivity in the left navigation panel.
Select Network Firewall from the dropdown menu.
Create a New Firewall Rule:
Click on CREATE in the top right corner
Fill out the following details in the creation form:
Name: Provide a name for the firewall rule.
Type of Connectivity: Choose the type of connectivity (Gateway or TLS).
Note for Gateway Connectivity: Ensure Gateway Connectivity is enabled for your cluster
Select your cluster from the left navigation panel.
Click Connection Details.
Enable Gateway Connectivity.
Description: Add an optional description if needed.
Cluster Selection: Select the cluster to which you want to apply the firewall rule.
Important: A cluster can have only one Gateway and one TLS connectivity enabled at a time.
Specify Allowed and Blocked IP Addresses:
Allowed IP Addresses: Add the IP addresses you want to allow.
Blocked IP Addresses: Add the IP addresses you want to block.
Rules to Remember
If no IP addresses are whitelisted : access is open to all IP addresses by default.
If IP addresses are present in both Allowed and Blocked lists: The system first checks the Blocked IP list and denies access if the IP is listed there.
If only Allowed IP addresses are specified: Only those IPs will have access.
If only Blocked IP addresses are specified: Blocked IPs are denied access, and all others are allowed by default.
This Network Firewall feature provides a flexible approach to IP management, ensuring secure, managed access to your e6data clusters.
Update Network Firewall Rule
Navigate to Network Firewall Select the Network Policy rule you want to update. Click on Edit. You can update the following:
Name: Provide a new name to the Network Firewall Rule Description: Update the description (optional) IP Addresses: Add or Remove IP addresses as per your requirement.
Click on Update.
Delete Network Firewall Rule
Navigate to Network Firewall Select the Network firewall rule you want to delete. Click on Delete. Click on Confirm to delete.
