Help Center> Virtual Private Cloud> User Guide (Kuala Lumpur Region)> Getting Started> Configuring a VPC for ECSs That Do Not Require Internet Access> Step 3: Create a Security Group

Updated on 2024-04-11 GMT+08:00

View PDF

Step 3: Create a Security Group

Scenarios

A security group consists of inbound and outbound rules. You can add security group rules to allow or deny the traffic to reach and leave the instances (such as ECSs) in the security group.

Procedure

Log in to the management console.
Click in the upper left corner and choose Network > Virtual Private Cloud.
The Virtual Private Cloud page is displayed.
In the navigation pane on the left, choose Access Control > Security Groups.
The security group list is displayed.
In the upper right corner, click Create Security Group.
The Create Security Group page is displayed.

Configure the parameters as prompted.

**Table 1** Parameter description
Parameter	Description	Example Value
Name	Mandatory Enter the security group name. The security group name can contain a maximum of 64 characters, which may consist of letters, digits, underscores (_), hyphens (-), and periods (.). The name cannot contain spaces. NOTE: You can change the security group name after a security group is created. It is recommended that you give each security group a different name.	sg-AB
Enterprise Project	Mandatory When creating a security group, you can add the security group to an enabled enterprise project. An enterprise project facilitates project-level management and grouping of cloud resources and users. The name of the default project is default. For details about creating and managing enterprise projects, see the Enterprise Management User Guide.	default
Template	Mandatory A template comes with default security group rules, helping you quickly create security groups. The following templates are provided: Custom: This template allows you to create security groups with custom security group rules. General-purpose web server (default value): The security group that you create using this template is for general-purpose web servers and includes default rules that allow all inbound ICMP traffic and allow inbound traffic on ports 22, 80, 443, and 3389. All ports open: The security group that you create using this template includes default rules that allow inbound traffic on any port. Note that allowing inbound traffic on any port poses security risks.	General-purpose web server
Description	Optional Supplementary information about the security group. The security group description can contain a maximum of 255 characters and cannot contain angle brackets (< or >).	N/A

Confirm the inbound and outbound rules of the template and click OK.

Parent topic: Configuring a VPC for ECSs That Do Not Require Internet Access

Previous topic: Step 2: Create a Subnet for the VPC

Next topic: Step 4: Add a Security Group Rule

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.