cc_staff
1,486
edits
Managing your cloud resources with OpenStack: Difference between revisions
Managing your cloud resources with OpenStack (view source)
Revision as of 20:32, 11 September 2018
, 6 years agono edit summary
(Marked this version for translation) |
No edit summary |
||
| Line 15: | Line 15: | ||
<!--T:5--> | <!--T:5--> | ||
[[File:Default_security_group_rules_en.png|400px|thumb| Default Security Group Rules (Click for larger image)]] | [[File:Default_security_group_rules_en.png|400px|thumb| Default Security Group Rules (Click for larger image)]] | ||
The image on the right | The '''default security group''' contains rules which allow a VM access out to the internet, for example to download operating system upgrades or package installations, but does not allow another machine to access it, except for other VMs belonging to the same default security group. We recommend you do not remove rules from the default security group as this may cause problems when creating new VMs. The image on the right shows the default security group rules that should be present: | ||
* 2 Egress rules, allow your instance to access outside network without any limitation, there is one rule for IPV4 and one for IPV6. | * 2 Egress rules, allow your instance to access outside network without any limitation, there is one rule for IPV4 and one for IPV6. | ||
* 2 Ingress rules, allow communication for all the vms that belong to that security group, for both IPV4 and IPV6. | * 2 Ingress rules, allow communication for all the vms that belong to that security group, for both IPV4 and IPV6. | ||
It is safe to add rules to the default security group and you may recall that we did this in [[Cloud Quick Start]] by either adding security rule for [[Creating_a_Linux_VM#Firewall.2C_add_rules_to_allow_SSH|SSH]] or [[Creating_a_Windows_VM#Firewall.2C_add_rules_to_allow_RDP|RDP]] to your default security group so that you were able to connect to your VM. | |||
<!--T:6--> | <!--T:6--> | ||