Wednesday, September 24, 2008

Re: [ADMIN] Postgres client Configuration

>>> Napolean Periathambi <Napolean.Periathambi@VSOFTCORP.COM> wrote:

> Is there any ways to include wildcard in pg_hba.conf file to accept
all
> postgres clients on the network rather than specifying specific IP
addresses
> on this file?

# CIDR-ADDRESS specifies the set of hosts the record matches.
# It is made up of an IP address and a CIDR mask that is an integer
# (between 0 and 32 (IPv4) or 128 (IPv6) inclusive) that specifies
# the number of significant bits in the mask. Alternatively, you can
write
# an IP address and netmask in separate columns to specify the set of
hosts.

In other words, it says how many bits of the IP address need to match.

For example:

# TYPE DATABASE USER CIDR-ADDRESS METHOD

# "local" is for Unix domain socket connections only
local all postgres ident sameuser
local cir all md5

# IPv4 local connections:
host cir all 127.0.0.1/32 md5
# IPv6 local connections:
host cir all ::1/128 md5

# Programmer/analyst network segment
host cir all 165.219.88.0/22 md5
# STEP network segment
host cir all 165.219.80.0/24 md5
# TECH network segment
host cir all 165.219.95.0/24 md5

-Kevin

--
Sent via pgsql-admin mailing list (pgsql-admin@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

No comments: