Managing your cloud resources with OpenStack: Difference between revisions

Managing your cloud resources with OpenStack (view source)

446 bytes added , 6 years ago

no edit summary

cc_staff

28

edits

@@ Line 16: / Line 16: @@
 <!--T:5-->
 The '''default security group''' contains rules which allow a VM access out to the internet, for example to download operating system upgrades or package installations, but does not allow another machine to access it, except for other VMs belonging to the same default security group. We recommend you do not remove rules from the default security group as this may cause problems when creating new VMs. You may recall, however, in the [[Cloud Quick Start]] you were directed to add a security rule for port 22 to allow incoming traffic so that you were able to connect to your VM ([[Creating_a_Linux_VM#Firewall.2C_add_rules_to_allow_SSH|Firewall, add rules to allow SSH]]).
+[[File:Default_security_group_rules_en.png|400px|thumb| Default Security Group Rules (Click for larger image)]]
+The image on the right show the default security group rules that should be present:
+* 2 Egress rules, allow your instance to access outside network without any limitation, there is one rule for IPV4 and one for IPV6.
+* 2 Ingress rules, allow communication for all the vms that belong to that security group, for both IPV$ and IPV6.
 <!--T:6-->