Updated on 2022-01-25 GMT+08:00

Creating a Security Group

Scenarios

You can create security groups, define security group rules, and add ECSs in the VPC to the security groups, improving ECS access security. It is recommended that you allocate ECSs that have different Internet access policies to different security groups.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner and select the desired region and project.
  3. On the console homepage, under Network, click Virtual Private Cloud.
  4. In the navigation pane on the left, choose Access Control > Security Groups.
  5. On the Security Groups page, click Create Security Group.
  6. In the Create Security Group area, set the parameters as prompted. Table 1 lists the parameters to be configured.

    Table 1 Parameter descriptions

    Parameter

    Description

    Example Value

    Template

    A template comes with default security group rules, helping you quickly create security groups. The following templates are provided:

    • Custom: This template allows you to create security groups with custom security group rules.
    • General-purpose web server: The security group that will be created using this template is for general-purpose web servers and includes default rules that allow all inbound ICMP traffic and allow inbound traffic on ports 22, 80, 443, and 3389.
    • All ports open: The security group that will be created using this template includes default rules that allow inbound traffic on any port. Allowing inbound traffic on any port may pose security risks. Exercise caution when using this template.

    General-purpose web server

    Name

    Specifies the security group name. This parameter is mandatory.

    The name can contain a maximum of 64 characters, which may consist of letters, digits, underscores (_), hyphens (-), and periods (.). The name cannot contain spaces.

    NOTE:

    You can change the security group name after a security group is created. It is recommended that you give each security group a different name.

    sg-318b

    Description

    Provides supplementary information about the security group. This parameter is optional.

    The description can contain a maximum of 255 characters and cannot contain angle brackets (< or >).

    -

  7. Click OK.