- Service Overview
- Getting Started
-
User Guide
- Granting Permissions to Use FlexusL Instances Through IAM
- Purchasing a FlexusL Instance
- Remotely Logging In to a FlexusL Instance
- Managing FlexusL Instances
- Managing Images
- Managing EVS Disks
- Managing Server Security
- Managing Backups
- Managing Domain Names
- Monitoring
-
Best Practices
- Best Practices for FlexusL
-
Setting Up a Website
- Managing Servers Using the BT Panel
- Building a WordPress Website
- Using Matomo to Build a Website Traffic Statistics System
- Using Odoo to Build an ERP System
- Using Moodle to Build an Online Learning System
- Using Joomla to Build a Content Management System
- Using Ghost to Build a Personal Blog
- Using EspoCRM to Build a Content Management System
- Setting Up the Development Environment
- Setting Up an Application
- Server Migration
- API Reference
-
FAQs
-
Product Consulting
- What Are the Differences Among FlexusL, FlexusX, and ECS?
- How Do I Find My Purchased FlexusL Instances on the Management Console?
- Where Can I View the FlexusL Instance ID and Cloud Server ID Packaged in the FlexusL Instance?
- Can I Migrate Cloud Servers to FlexusL?
- What Should I Do If I Do Not Have Permissions to Purchase FlexusL?
- What Regions Does FlexusL Support?
- What Is the Relationship Among FlexusL Instances, the Dashboard, and the O&M Page?
- Billing
- Creation and Unsubscription
- Specification Changes
-
OS and Image
- Do FlexusL OS Images Provide Visualized Dashboards?
- What Should I Do If a Private Image Cannot Be Used to Create a FlexusL Instance or Change the OS of a FlexusL Instance Because the Password Reset Plug-in Is Not Installed on the Image or the Image's onekey_resetpasswd Tag Is Missing?
- How Do I Check that an Application Image Has Been Up and Running?
- How Do I View the Applications That Are Installed in the FlexusL Application Images by Default?
- Why Can't I Open the Dashboard of the Application Pre-installed in the Application Image?
- How Do I Upgrade the BT Panel?
- Why Can't I Access the Dashboard of the Application Pre-installed in the Application Image After Entering the Initial Username and Password?
- What Do I Do If HSS Is Not Started After I Use a Private Image to Create a FlexusL Instance or Change the OS of an Instance?
- Remote Login
-
Password
- What Are the Username and Password for Remotely Logging In to a FlexusL Instance Server?
- What Can I Do If I Forget the Login Password of a FlexusL Instance?
- What Should I Do If the Password Cannot Be Reset After I Use a Private Linux Image to Create a FlexusL Instance or Change the OS of an Existing FlexusL Instance and I Forgot the Initial Password of the Private Image?
- What Should I Do If the Password Cannot Be Reset After I Use a Private Linux Image to Create a FlexusL Instance or Change the OS of an Existing FlexusL Instance and I Know the Initial Password of the Private Image?
-
Network
- Does a FlexusL Instance Have an EIP?
- Can I Change the Public and Private IP Addresses of a FlexusL Instance?
- How Do I Use Data Packages in FlexusL Instances?
- How Do I View the Traffic Usage of My FlexusL Instance?
- Can I Add a Data Package to a FlexusL Instance?
- What Do I Do If My FlexusL Instance Freezes?
- How Does FlexusL Instances Communicate with Each Other and with Other Cloud Resources Over a Private Network?
-
EVS Disks
- How Do I Detach or Unsubscribe from a System or Data Disk of a FlexusL Instance?
- Can I Use EVS Disk Snapshots to Back Up FlexusL Instance Data?
- Can EVS Disks of FlexusL Instances Be Expanded?
- Can I Change the EVS Disk Type for a FlexusL Instance?
- Can I Attach Existing Data Disks to My FlexusL Instances?
-
Product Consulting
- General Reference
Copied.
Overview
Security Groups
A security group is a collection of access control rules for cloud resources, such as cloud servers, containers, and databases, that have the same security protection requirements and that are mutually trusted. After a security group is created, you can configure access rules that will apply to all cloud resources added to this security group.
When you create a FlexusL instance, the system automatically creates a default security group (sg-default-smb) and associates it with the instance. You can also create a security group based on service requirements and associate it with the instance. An instance can be associated with multiple security groups, and traffic to and from the instance is matched by priority in a descending order.
For more information about security groups, see Security Group.
Security Group Rules
- Inbound rules: control traffic to the instances in a security group.
- Outbound rules: control traffic from the instances in a security group to access external networks.
By default, FlexusL inbound security group rules only allow instances in the same security group to communicate with each other, and all inbound requests are denied. The outbound security group rules enable all ports and allow all requests to pass through the instances in the security group. Each security group has default rules. For details, see Table 1. You can also customize security group rules. For details, see Configuring Security Group Rules for a FlexusL Instance.
|
Direction |
Action |
Type |
Protocol & Port |
Source/Destination |
Description |
|---|---|---|---|---|---|
|
Inbound |
Allow |
IPv4 |
All |
Source: sg-default-smb |
Allows instances in the security group to communicate with each other over IPv4 protocols. |
|
Inbound |
Allow |
IPv6 |
All |
Allows instances in the security group to communicate with each other over IPv6 protocols. |
|
|
Outbound |
Allow |
IPv4 |
All |
Destination: 0.0.0.0/0 |
Allows access from instances in the security group to any IPv4 address over any port. |
|
Outbound |
Allow |
IPv6 |
All |
Destination: ::/0 |
Allows access from instances in the security group to any IPv6 address over any port. |
Security Group Constraints
- By default, you can create up to 100 security groups in your cloud account.
- By default, you can add up to 50 rules to a security group.
- For better network performance, you are advised to associate no more than five security groups with a FlexusL instance or supplementary network interface.
- You can add up to 20 instances to a security group at a time.
- You can add up to 1,000 instances to a security group.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
