Help Center/ Cloud Bastion Host/ User Guide/ Instances/ Changing Security Groups
Updated on 2024-12-03 GMT+08:00

Changing Security Groups

A security group is a logical group. It provides access control policies for the ECSs and CBH instances that are trustful to each other and have the same security protection requirements in a VPC.

To ensure CBH instance security and reliability, configure security group rules to allow specific IP addresses and ports to access the resources. However, if you select an inapplicable security group when purchasing a bastion host, you cannot allow access from these IP addresses and ports by configuring security group rules. In this case, change the security group to meet your O&M requirements.

Constraints

  • A CBH instance can be added to a maximum of five security groups.
  • The CBH instances must be in the Running status.
  • If a CBH instance is added to multiple security groups, rules of all security groups are applied to the instance.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner and select a region or project. In the upper left corner of the page, click and select a region. Choose Security & Compliance > Cloud Bastion Host to go to the CBH instance management page.

    Figure 1 Instances
    Table 1 Instance parameters

    Parameter

    Description

    Instance Name

    Instance name you specify. It cannot be modified after the instance is created.

    Status

    Status of the instance, including the status of the standby node.

    Instance Type

    Instance type you select.

    Login Address

    Private IP address of an instance.

    EIP

    EIP of the instance.

    Billing Mode

    Billing mode of the current instance.

    Enterprise Project

    Enterprise project that the instance belongs to.

  3. Locate the row that contains the target instance. In the Operation column, choose More > Configure Network > Change Security Group.
  4. In the displayed dialog box, select the security group you want to configure for the instance.

    Figure 2 Change Security Group

  5. Click OK.