Updated on 2022-01-25 GMT+08:00

Step 4: Create a Security Group

Scenarios

To improve ECS access security, you can create security groups, define security group rules, and add ECSs in a VPC to different security groups. We recommend that you allocate ECSs that have different Internet access policies to different security groups.

Procedure

  1. Log in to the management console.
  1. On the console homepage, under Network, click Virtual Private Cloud.
  2. In the navigation pane on the left, choose Access Control > Security Groups.
  3. On the Security Groups page, click Create Security Group.
  4. In the Create Security Group area, set the parameters as prompted. Table 1 lists the parameters to be configured.

    Table 1 Parameter description

    Parameter

    Description

    Example Value

    Name

    Specifies the security group name. This parameter is mandatory.

    The security group name can contain a maximum of 64 characters, which may consist of letters, digits, underscores (_), hyphens (-), and periods (.). The name cannot contain spaces.

    NOTE:

    You can change the security group name after a security group is created. It is recommended that you give each security group a different name.

    sg-318b

    Template

    A template comes with default security group rules, helping you quickly create security groups. The following templates are provided:

    • Custom: This template allows you to create security groups with custom security group rules.
    • General-purpose web server: The security group that will be created using this template is for general-purpose web servers and includes default rules that allow all inbound ICMP traffic and allow inbound traffic on ports 22, 80, 443, and 3389.
    • All ports open: The security group that will be created using this template includes default rules that allow inbound traffic on any port. Allowing inbound traffic on any port may pose security risks.

    General-purpose web server

    Description

    Provides supplementary information about the security group. This parameter is optional.

    The security group description can contain a maximum of 255 characters and cannot contain angle brackets (< or >).

    N/A

  5. Click OK.