Creating Subnet Whitelists
Provides the procedure necessary to restrict access to cluster data.
About this task
To provide additional cluster security, limit cluster data access to a whitelist of
trusted subnets. The mfs.subnets.whitelist
parameter in
mfs.conf
accepts a comma-separated list of subnets in CIDR
notation. If this parameter is set, the FileServer service only accepts requests
from the specified subnets.
Procedure
-
Edit
/opt/mapr/conf/mfs.conf
and modify themfs.subnets.whitelist
parameter. - Add a comma-separated list of subnets in CIDR notation.
- Restart the FileServer.