The Tencent Container Registry (TCR) Enterprise Edition supports public network access control. An allowlist can be configured to restrict clients' access to the instance through the Internet, ensuring instance data privacy and security. When a TCR Enterprise Edition instance is created, the public network access entry is disabled by default. This means you cannot use a development test server to push or pull images over the Internet.
This document describes how to configure public network access control for a TCR Enterprise Edition instance.
Before configuring public network access control for a TCR Enterprise Edition instance, you must first create a TCR Enterprise Edition instance.
On the "Public network" page, click Add a Public IP Allowlist and add the public IP address range and note in the displayed window. See the figure below.
192.168.0.0/24. We do not recommend that you enter
0.0.0.0/0to accept all Internet access requests to the instance.
Click OK. The public network access allowlist policy is added and takes effect.
- If you need to change the allowlist information, delete the policy and create another one.
- If the public network access entry cannot be enabled or the allowlist policy cannot be created, submit a ticket.