tencent cloud


iptables Forwarding

Last updated: 2021-01-15 16:38:06

    TencentDB for Tendis does not support direct access over a public network, but you can use a CVM instance with a public IP for port forwarding to access a Tendis instance over a public network.


    Port forwarding with iptables is not stable, so we do not recommend this public network access solution in a production environment.


    1. Log in to a CVM instance, and enable the IP forwarding feature.


      The CVM and TencentDB instances must be under the same account and in the same VPC in the same region, or both in the classic network.

      echo 1 > /proc/sys/net/ipv4/ip_forward
    2. Configure the forwarding rule. The following sample code is to forward access requests of 26.xx.x.2:10001 (CVM public IP and customizable port) to a Tendis instance whose private IP and port are
      iptables -t nat -A PREROUTING -p tcp --dport 10001 -j DNAT --to-destination
      iptables -t nat -A POSTROUTING -d -p tcp --dport 6379 -j MASQUERADE
    3. Configure the security group to open the public port of the CVM instance. We recommend that you configure a security group rule to allow only the source which needs to connect to the Tendis instance.
    4. To connect to the Tendis instance in the private network using a public network address (26.xx.xx.2:10001 in the sample code), you can use the same command as the private network connection command. For more information, please see Connecting to Tendis Instances.
    5. After connecting to the Tendis instance, run the info command. If database information is returned, the connection is successful.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support