Performance monitoring IP restriction (instance security hardening)
Use the glide.custom.ip.authenticate.allow property to enable only a specified comma-separated list or a range of IP addresses access to stats.do, threads.do, and replication.do pages. If this property is not enabled, it is possible to access those types of pages from any IP address.
Note:
Based on some recent changes, IP Address Access Control must be used for all IP
restriction. Refer to the Steps to Configure section in Restrict access to specific IP
ranges.
More information
| Attribute | Description |
|---|---|
| Property name | glide.custom.ip.authenticate.allow |
| Configuration type | System Properties (/sys_properties_list.do) |
| Configure in Instance Security Center | No |
| Purpose | Restrict the access only to configuration pages to the IP addresses in the inclusion list. |
| Recommended value | Comma-separated list of IP address. |
| Functional Impact | Sensitive information pages can be accessed even from an untrusted IP address. |
| Security risk | (Low) Unnecessary exposure to the target instance on the internet should be restricted with the help of IP access controls functionality. |
| Reference | Available system properties |
To learn more about adding or creating a system property, see Add a system property.