PostgreSQL Netzwerkkonfiguration (pg hbaconf) » Historie » Version 16
[E] Axel S, 22.07.2025 13:42
| 1 | 1 | [X] Daniel S | h1. PostgreSQL Netzwerkkonfiguration (pg hbaconf) |
|---|---|---|---|
| 2 | |||
| 3 | syncro/APPS IMMER passwort, da sonst kein dblink funktinoiert. |
||
| 4 | postgres lokal trust wegen scripten und konsole. |
||
| 5 | <pre> |
||
| 6 | 16 | [E] Axel S | # TYPE DATABASE USER ADDRESS METHOD |
| 7 | |||
| 8 | # "local" is for Unix domain socket connections only |
||
| 9 | #local all all scram-sha-256 |
||
| 10 | |||
| 11 | 3 | [X] Daniel S | # PRODAT local & loopback |
| 12 | 12 | [X] Daniel S | host all postgres 127.0.0.1/32 trust |
| 13 | host all postgres ::1/128 trust |
||
| 14 | 15 | [E] Axel S | host all authenticator 127.0.0.1/32 trust |
| 15 | host all authenticator ::1/128 trust |
||
| 16 | 12 | [X] Daniel S | #host all APPS,SYS.dblink,syncro all md5 |
| 17 | host all APPS,SYS.dblink,syncro 127.0.0.1/32 md5 |
||
| 18 | host all APPS,SYS.dblink,syncro ::1/128 md5 |
||
| 19 | 4 | [X] Daniel S | |
| 20 | 6 | [X] Daniel S | # zB Grafana und sonstiges von localhost |
| 21 | 12 | [X] Daniel S | host all all 127.0.0.1/32 md5 |
| 22 | host all all ::1/128 md5 |
||
| 23 | 7 | [X] Daniel S | |
| 24 | |||
| 25 | # IPv4 local & remote connections: |
||
| 26 | # lokal auf dem Server = immer trust |
||
| 27 | 12 | [X] Daniel S | # host all all 127.0.0.1/32 trust |
| 28 | # host all all ::1/128 trust |
||
| 29 | 1 | [X] Daniel S | |
| 30 | 8 | [X] Daniel S | # Zugriffe von außen: |
| 31 | 14 | [X] Daniel S | host all root,postgres,SYS.dblink,APPS 0.0.0.0/0 reject # Standard-Super-User restrict by default from outside |
| 32 | 8 | [X] Daniel S | |
| 33 | 6 | [X] Daniel S | # Netzwerk |
| 34 | # host all all 192.168.0.0/16 md5 # nur auf das Subnetz eingeschänkt! |
||
| 35 | 8 | [X] Daniel S | |
| 36 | 6 | [X] Daniel S | |
| 37 | |||
| 38 | 9 | [X] Daniel S | #### host all all all md5 # Von überall aus zugänglich via md5 |
| 39 | 4 | [X] Daniel S | |
| 40 | 1 | [X] Daniel S | </pre> |