Sign Up
Docs Network Security

Network Security

Control which IP addresses are allowed to connect to your database instance.

Overview

Network Security allows you to restrict database access by IP address. Only IPs that are explicitly whitelisted can connect to your database.

Default Behavior: If no IP addresses are added to the whitelist, the database will remain publicly accessible (equivalent to allowing 0.0.0.0/0).

Whitelisting an IP Address

To restrict access, add specific IP addresses or CIDR ranges.

  • Open your database instance
  • Go to Settings → Network Security
  • Click Add IP
  • Enter an IP address or CIDR block (example: 192.168.1.10 or 192.168.1.0/24)
  • Assign a name for easy identification

Named Entries: You can assign a label (example: Office IP, Backend Server, CI Pipeline) to easily remember what each IP is used for.

CIDR Support

You can allow entire IP ranges using CIDR notation:

  • 203.0.113.10 → Single IP
  • 203.0.113.0/24 → IP range
  • 0.0.0.0/0 → Allow all (public access)

Security Recommendations

  • Whitelist only application servers and trusted developer IPs
  • Avoid wide CIDR ranges in production
  • Combine IP restrictions with strong passwords and SSL
  • Remove unused IP entries regularly

Dynamic IPs: If your IP changes frequently (home internet, mobile networks), consider using a static IP service or updating the whitelist when needed.