Updated on 2023-09-22 GMT+08:00
Changing Security Groups
A security group is a logical group. It provides access control policies for the ECSs and CBH instances that are trustful to each other and have the same security protection requirements in a VPC.
To ensure CBH instance security and reliability, configure security group rules to allow specific IP addresses and ports to access the resources. However, if you select an inapplicable security group when purchasing a bastion host, you cannot allow access from these IP addresses and ports by configuring security group rules. In this case, change the security group to meet your O&M requirements.
Constraints
- A CBH can be added to a maximum of five security groups.
- Only instances in the Running state can change security groups.
- When a bastion host is associated with multiple security groups, only the rules common to both security groups are applied.
Procedure
- Log in to the management console.
- Click
in the upper left corner of the management console and select a region or project. - In the navigation pane on the left, click
and choose Security & Compliance > Cloud Bastion Host to go to the CBH console.
Figure 1 Instances
- Locate the row that contains the target instance. In the Operation column, choose More > Configure Network > Change Security Group.
- In the displayed dialog box, select the security group you want to configure for the instance.
Figure 2 Change Security Group
- Click Yes.
Parent topic: Instances
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
