Creating a Security Group
A security group is a collection of access control rules for ECSs that have the same security protection requirements and are mutually trusted. After a security group is created, you can create various access rules for the security group, and these rules will apply to all ECSs added to this security group. For more information about security groups, see Security Group Overview.
You need to create two security groups, one for the active and standby SAP HANA ECSs, and the other for the active and standby SAP S/4HANA ECSs.
Procedure
- Create a security group for SAP HANA ECSs.
- Choose Access Control > Security Groups in the navigation pane on the left of the VPC console. On the Security Groups page, click Create Security Group.
- On the Security Group page, click Create Security Group.
- Template: The template contains security group rules, which help you quickly create a security group. The following templates are provided:
- Custom: This template allows you to create security groups with custom security group rules.
- General-purpose web server: The security group that will be created using this template is for general-purpose web servers and includes default rules that allow all inbound ICMP traffic and allow inbound traffic on ports 22, 80, 443, and 3389.
- All ports open: The security group that will be created using this template includes default rules that allow inbound traffic on any port. Allowing inbound traffic on any port may pose security risks. Exercise caution when using this template.
- Name: specifies the name of the security group. Name the security group that is easy to identify, for example, sg_sap_hana.
- Enterprise Project: You can add the security group to an enabled enterprise project. You can select an enterprise project from the drop-down list, for example, SAP.
- Template: The template contains security group rules, which help you quickly create a security group. The following templates are provided:
- Click OK.
- Locate the row that contains the newly created security group sg-sap-hana, click Manage Rule in the Operation column to switch to the page for managing inbound and outbound rules. On the Inbound Rules tab, click Add Rule. In the displayed dialog box, add the desired ports based on Table 1.
- Choose Access Control > Security Groups in the navigation pane on the left of the VPC console. On the Security Groups page, click Create Security Group.
- Create a security group for SAP S/4HANA ECSs.
- Choose Access Control > Security Groups in the navigation pane on the left of the VPC console. On the Security Groups page, click Create Security Group.
- Set parameters required for creating a security group (sg-sap-s4) for SAP S/4HANA ECSs as prompted.
- Locate the row that contains the newly created security group sg-sap-s4, click Manage Rule in the Operation column to switch to the page for managing inbound and outbound rules. On the Inbound Rules tab, click Add Rule. In the displayed dialog box, add the desired ports based on Table 2.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
