If you have firewalld
enabled on the PostgreSQL server and you would like to allow access from other clients, you will need to add the PostgreSQL service and reload the firewall configuration.
Code Block |
---|
|
firewall-cmd --add-service=postgresql --permanent
firewall-cmd --reload |
PostgreSQL, by default, only allows local connections. If you would like to open access to network clients or if you are installing the Client Tools on a separate server (installation type 2), modify the following configuration files:
postgresql.conf
Code Block |
---|
|
listen_addresses = '*' # Allow remote connections on any network interface.
# You can also specify an individual IP address or
# comma-separated list of IP addresses. |
...
Code Block |
---|
|
# HOST DATABASE USER ADDRESS METHOD
# dataops needs access to the entire cluster, hence DATABASE is all
host all all 192.168.111.0/24 trust
# CLAIMS Direct Client Tools only need access to the alexandria database
# and by-default, use a fixed user: alexandria
host alexandria alexandria 10.234.1.6/32 trusttrust |
Note |
---|
Changes to pg_hba.conf require a configuration reload to take effect, e.g., Code Block |
---|
| SELECT pg_reload_conf(); |
|
For a detailed explanation of the host-based access file, see https://www.postgresql.org/docs/10/auth-pg-hba-conf.html.
...