How do we enforce AMQPS (TLS) only?

You can configure a firewall for your cluster directly from our CloudAMQP control panel. You can specify an IP range and decide which ports should be opened for that range. All other ports to your instance will be closed.

You also have the option to allow all connections, but only on e.g. TLS.

Here follow some examples:

I want to have access to RabbitMQ from any computer but close the ports for the other services

1. Enter 0.0.0.0/0 in as Source IP
2. Check AMQP and AMQPS checkboxes
3. Uncheck the other services and make sure the Other ports field is empty.

There should only be one server that has access to the services.

1. Get the public IP address of that server
2. Enter that IP in Source IP along with the netmask 32 (for example 223.145.67.23/32)
3. Make sure all checkboxes are checked

I only want servers in the peered VPC to access RabbitMQ

1. Clear the value for Source IP on all rows in the table
2. Save it