yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
Files
main
doc-exports/docs/obs/umn/obs_03_0130.html
zhangyue 19668ae97b OBS UMN DOC 
Reviewed-by: Sabelnikov, Dmitriy <dmitriy.sabelnikov@t-systems.com>
Co-authored-by: zhangyue <zhangyue164@huawei.com>
Co-committed-by: zhangyue <zhangyue164@huawei.com>
2025-05-20 13:11:00 +00:00

5.8 KiB
Raw Permalink Blame History

Restricting Access to a Bucket for Specific Addresses

You can configure a bucket policy to restrict access to a bucket for specific addresses. This example describes how to deny access from clients whose IP address is in the range of 114.115.1.0/24 to a bucket.

Procedure

  1. In the bucket list, click the bucket you want to operate to go to the Objects page.
  2. In the navigation pane, choose Permissions > Bucket Policies.
  3. Click Create.
  4. Configure the following parameters in the Create Bucket Policy dialog box.

    Table 1 Restricting access to a bucket for specific addresses

    Parameter

    Description

    Configuration method

    Choose Visual Editor.

    Policy Name

    Enter a custom name.

    Effect

    Deny

    Principal

    Select All accounts.

    Resources

    Select Entire bucket (including the objects in it).

    Actions

    Select Customize and then * (indicating all actions).

    Conditions
    • Conditional Operator: IpAddress
    • Key: SourceIP
    • Value: 114.115.1.0/24

  5. Click Create in the lower right corner.

Verification

Initiate an access request from an IP address in the range of 114.115.1.0/24. The access is denied. Initiate an access request from an IP address beyond the range of 114.115.1.0/24. The access is allowed.

Parent topic: Application Cases