Configure Security Group

<p>In the cloud environment, different networks in the same VPC are isolated by firewalls and ACLs. Users can configure Security Group Policy to enable mutual access between ECSs in different networks. Please follow the steps below to enable mutual access:</p> <p>1.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>All</strong> Products &rarr; <strong>ECS</strong> on the console to enter the Overview page of the ECS.</p> <p>2.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>Security Group</strong> to enter the Security Group page.</p> <p>3.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>Create</strong> and the Create Security Group window pops up.</p> <p>4.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Select the VPC and network and click <strong>Confirm</strong> to complete the creation.</p> <p><strong>Note: </strong>In order to access the ECS in the SF through the Terminal ECS in the DMZ, a Security Group with the SF network needs to be created.</p> <p><img src="https://obs-cn-shanghai.yun.pingan.com/pcp-portal/20191204113634-1f3bda899f0d.png" style="height:334px; width:830px" /></p> <p>5.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; On the Security Group page, click the name of the newly created Security Group to enter the Security Group Information page.</p> <p>6.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>Add Instance</strong> and the Add Instance window pops up.</p> <p>7.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Select the instance and click <strong>Confirm </strong>to add it to the Security Group.</p> <p>8.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>Security Group Rules</strong> on the Security Group Information page to enter the security group rules management page.</p> <p>9.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Click <strong>Create</strong> and the Create Security Group Rules window pops up.</p> <p>10.&nbsp;&nbsp;&nbsp;&nbsp; Select the Rules Direction (IN), enter the Authorize IP (the IP address of the subnet where the terminal is located), and click <strong>Confirm</strong> to complete the creation of a Security Group Rule.</p> <p>11.&nbsp;&nbsp;&nbsp; Test whether the network on the ECS is connected: telnet 10.17.40.104 22.</p> <p><strong>Note:</strong></p> <p>&bull;&nbsp;&nbsp;&nbsp;&nbsp; After the testing, you can log in to the ECS of the network segment through ssh.</p> <p>&bull;&nbsp;&nbsp;&nbsp;&nbsp; To access Windows ECS, the Security Policy here also needs to open port 3389.</p>
Did the above content solve your problem? Yes No
Please complete information!

Call us

400-151-8800

Email us

cloud@pingan.com

Online customer service

Instant reply

Technical Support

cloud products