vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/vpc/umn/vpc_SecurityGroup02_0010.html
Qin Ying, Fan 62b5636b2d VPC UMN 0930 version 
Reviewed-by: Kucerak, Kristian <kristian.kucerak@t-systems.com>
Co-authored-by: Qin Ying, Fan <fanqinying@huawei.com>
Co-committed-by: Qin Ying, Fan <fanqinying@huawei.com>
2022-10-06 14:10:38 +00:00

13 KiB
Raw Permalink Blame History

Importing and Exporting Security Group Rules

Scenarios

If you want to quickly apply the rules of one security group to another, or if you want to modify multiple rules of the current security group at once, you can import or export existing rules.

Security group rules are imported or exported to an Excel file.

Notes and Constraints

When modifying exported security group rules, you can only modify existing fields in the exported file based on the template and cannot add new fields or modify the field names. Otherwise, the file will fail to be imported.

Procedure

  1. Log in to the management console.
  1. Click in the upper left corner and select the desired region and project.
  2. On the console homepage, under Network, click Virtual Private Cloud.
  3. In the navigation pane on the left, choose Access Control > Security Groups.
  4. On the Security Groups page, click the security group name.
  5. Export and import security group rules.
    • Click to export all rules of the current security group to an Excel file.
    • Click to import security group rules from an Excel file into the current security group.
      Table 1 describes the parameters in the template for importing rules.
      Table 1 Template parameters

      Parameter

      Description

      Example Value

      Direction

      The direction in which the security group rule takes effect.

      • Inbound rules control incoming traffic to cloud resources in the security group.
      • Outbound rules control outgoing traffic from cloud resources in the security group.

      Inbound

      Protocol & Port

      Protocol: The network protocol. Currently, the value can be All, TCP, UDP, ICMP, GRE, or others.

      TCP

      Port: The port or port range over which the traffic can reach your ECS. The value ranges from 1 to 65535.

      22, or 22-30

      Source
      The source of the security group rule. The value can be a single IP address or a security group to allow access from the IP address or instances in the security group. For example:
      • xxx.xxx.xxx.xxx/32 (IPv4 address)
      • xxx.xxx.xxx.0/24 (IPv4 address range)
      • 0.0.0.0/0 (all IPv4 addresses)
      • sg-abc (security group)

      0.0.0.0/0

      Destination
      The destination of the security group rule. The value can be a single IP address or a security group to allow access to the IP address or instances in the security group. For example:
      • xxx.xxx.xxx.xxx/32 (IPv4 address)
      • xxx.xxx.xxx.0/24 (IPv4 address range)
      • 0.0.0.0/0 (all IPv4 addresses)
      • sg-abc (security group)

      0.0.0.0/0

      Description

      Supplementary information about the security group rule. This parameter is optional.

      The security group rule description can contain a maximum of 255 characters and cannot contain angle brackets (< or >).

      -

      Last Modified

      The time when the security group was modified.

      -
Parent topic: Security Group