Difference between revisions of "OpenStack Security Groups"

From CAC Documentation wiki
Jump to navigation Jump to search
Line 1: Line 1:
This is a stub page for temporary content about security groups on CAC's OpenStack Red Cloud.  When created, this content will discuss how to create, modify, use and delete security groups.
+
== About Security Groups ==
 +
 
 +
Security Groups allow control over the types of communication that are possible between a Red Cloud instance and the internet.  A security group is a collection of rules, each of which specifies that internet traffic will be allowed to come from (ingress) or go to (egress) a set of Internet Protocol (IP) addresses through a given set of ports.  The permissions given by these rules accumulate to form the net effect of the security group.  Multiple security groups can be assigned to an instance, and the permissions from multiple groups also accumulate.
 +
 
 +
Each Red Cloud project has a default security group that cannot be deletedThis security group will be assigned by default to every new instance that is created, though you can remove it if you want.  Users will want to either modify the project's default security group or create additional security groups to provide access to types of internet communication that are not enabled by the default group.
 +
 
 +
== Creating a Security Group ==
 +
 
 +
security, baby!
 +
 
 +
== Editing a Security Group ==
 +
 
 +
security, baby!
 +
 
 +
== Assigning Security Groups to an Instance ==
 +
 
 +
security, baby!

Revision as of 21:06, 10 December 2018

About Security Groups

Security Groups allow control over the types of communication that are possible between a Red Cloud instance and the internet. A security group is a collection of rules, each of which specifies that internet traffic will be allowed to come from (ingress) or go to (egress) a set of Internet Protocol (IP) addresses through a given set of ports. The permissions given by these rules accumulate to form the net effect of the security group. Multiple security groups can be assigned to an instance, and the permissions from multiple groups also accumulate.

Each Red Cloud project has a default security group that cannot be deleted. This security group will be assigned by default to every new instance that is created, though you can remove it if you want. Users will want to either modify the project's default security group or create additional security groups to provide access to types of internet communication that are not enabled by the default group.

Creating a Security Group

security, baby!

Editing a Security Group

security, baby!

Assigning Security Groups to an Instance

security, baby!