vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/vpc/umn/SecurityGroup_0005.html
fanqinying 44c0250eec VPC UMN 20241008 version 
Reviewed-by: Sarda, Priya <prsarda@noreply.gitea.eco.tsi-dev.otc-service.com>
Co-authored-by: fanqinying <fanqinying@huawei.com>
Co-committed-by: fanqinying <fanqinying@huawei.com>
2024-11-21 10:14:33 +00:00

91 lines
9.1 KiB
HTML
Raw Blame History

<a name="SecurityGroup_0005"></a><a name="SecurityGroup_0005"></a>
<h1 class="topictitle1">Allowing Common Ports with a Few Clicks</h1>
<div id="body0000001646960360"><div class="section" id="SecurityGroup_0005__section111711223183718"><h4 class="sectiontitle">Scenarios</h4><div class="p" id="SecurityGroup_0005__p57971737163513">You can configure a security group to allow common ports with a few clicks. This function is suitable for the following scenarios:<ul id="SecurityGroup_0005__ul5362904812"><li id="SecurityGroup_0005__en-us_topic_0118534004_li123617917487">Remotely log in to ECSs.</li><li id="SecurityGroup_0005__en-us_topic_0118534004_li792741712487">Use the ping command to test ECS connectivity.</li><li id="SecurityGroup_0005__en-us_topic_0118534004_li64071030164815">ECSs functioning as web servers provide website access services.</li></ul>
</div>
<p id="SecurityGroup_0005__p192717293514"><a href="#SecurityGroup_0005__table117828131111">Table 1</a> describes the common ports that can be opened with a few clicks.</p>
<div class="tablenoborder"><a name="SecurityGroup_0005__table117828131111"></a><a name="table117828131111"></a><table cellpadding="4" cellspacing="0" summary="" id="SecurityGroup_0005__table117828131111" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Common ports</caption><thead align="left"><tr id="SecurityGroup_0005__row51752851112"><th align="left" class="cellrowborder" valign="top" width="15.618438156184384%" id="mcps1.3.1.4.2.5.1.1"><p id="SecurityGroup_0005__p1417182819110">Direction</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="24.177582241775823%" id="mcps1.3.1.4.2.5.1.2"><p id="SecurityGroup_0005__p14239310125">Protocol &amp; Port &amp; Type</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="18.97810218978102%" id="mcps1.3.1.4.2.5.1.3"><p id="SecurityGroup_0005__p2017192813116">Source/Destination</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="41.225877412258775%" id="mcps1.3.1.4.2.5.1.4"><p id="SecurityGroup_0005__p18171528121111">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="SecurityGroup_0005__row14179283118"><td class="cellrowborder" rowspan="6" valign="top" width="15.618438156184384%" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p517928111110">Inbound</p>
</td>
<td class="cellrowborder" valign="top" width="24.177582241775823%" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p19261786910">TCP: 22 (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" width="18.97810218978102%" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p95914491420">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" width="41.225877412258775%" headers="mcps1.3.1.4.2.5.1.4 "><p id="SecurityGroup_0005__p145914411142">Allows all IPv4 addresses to access ECSs in the security group over port 22 (SSH) for remotely logging in to Linux ECSs.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row81712286114"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p2129124012146">TCP: 3389 (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p1312918404145">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p712914018142">Allows all IPv4 addresses to access ECSs in the security group over port 3389 (RDP) for remotely logging in to Windows ECSs.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row855217571135"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p195531457171316">TCP: 80 (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p1021112616177">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p35531857101319">Allows all IPv4 addresses to access ECSs in the security group over port 80 (HTTP) for visiting websites.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row155531157121313"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p19553195718131">TCP: 443 (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p8211112617178">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p25539570131">Allows all IPv4 addresses to access ECSs in the security group over port 443 (HTTPS) for visiting websites.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row1087218311379"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p5498162873817">TCP: 20-21 (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p254384017387">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p1787253114370">Allows all IPv4 addresses to access ECSs in the security group over ports 20 and 21 (FTP) for uploading or downloading files.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row6188115311135"><td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p5188353201315">ICMP: All (IPv4)</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p17188653121313">0.0.0.0/0</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p6188053181311">Allows all IPv4 addresses to access ECSs in the security group over any port for using the ping command to test ECS connectivity.</p>
</td>
</tr>
<tr id="SecurityGroup_0005__row11482558181713"><td class="cellrowborder" valign="top" width="15.618438156184384%" headers="mcps1.3.1.4.2.5.1.1 "><p id="SecurityGroup_0005__p2048355871719">Outbound</p>
</td>
<td class="cellrowborder" valign="top" width="24.177582241775823%" headers="mcps1.3.1.4.2.5.1.2 "><p id="SecurityGroup_0005__p321741193111">All (IPv4)</p>
<p id="SecurityGroup_0005__p6217217317">All (IPv6)</p>
</td>
<td class="cellrowborder" valign="top" width="18.97810218978102%" headers="mcps1.3.1.4.2.5.1.3 "><p id="SecurityGroup_0005__p19483858111718">0.0.0.0/0</p>
<p id="SecurityGroup_0005__p9373131013114">::/0</p>
</td>
<td class="cellrowborder" valign="top" width="41.225877412258775%" headers="mcps1.3.1.4.2.5.1.4 "><p id="SecurityGroup_0005__p748375814179">Allows access from ECSs in the security group to any IP address over any port.</p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="section" id="SecurityGroup_0005__section423982018414"><h4 class="sectiontitle">Procedure</h4><ol id="SecurityGroup_0005__ol15905193312412"><li id="SecurityGroup_0005__li2849879021595">Log in to the management console.</li><li id="SecurityGroup_0005__li840318282158">Click <span><img id="SecurityGroup_0005__en-us_topic_0118498823_image338921514480" src="en-us_image_0000001818982734.png"></span> in the upper left corner and select the desired region and project.</li><li id="SecurityGroup_0005__li65321958215">Click <span><img id="SecurityGroup_0005__en-us_topic_0118498850_image8750174734412" src="en-us_image_0000001818823186.png"></span> in the upper left corner and choose <strong id="SecurityGroup_0005__b284311813542"><span id="SecurityGroup_0005__en-us_topic_0118498850_text47511547154412">Network</span><span id="SecurityGroup_0005__en-us_topic_0118498850_text1275116474447"></span></strong> &gt; <strong id="SecurityGroup_0005__b2844131819543">Virtual Private Cloud</strong>.<p id="SecurityGroup_0005__p1182103318256">The <strong id="SecurityGroup_0005__b168701256435">Virtual Private Cloud</strong> page is displayed.</p>
</li><li id="SecurityGroup_0005__li2907103354114">In the navigation pane on the left, choose <strong id="SecurityGroup_0005__b1135517222317">Access Control</strong> &gt; <strong id="SecurityGroup_0005__b935511219239">Security Groups</strong>.<p id="SecurityGroup_0005__p78331733204216">The security group list is displayed.</p>
</li><li id="SecurityGroup_0005__li10508153994513">In the security group list, click the name of the security group.<p id="SecurityGroup_0005__p100911194312"><a name="SecurityGroup_0005__li10508153994513"></a><a name="li10508153994513"></a>The security group details page is displayed.</p>
</li><li id="SecurityGroup_0005__li1431513481421">Click the <strong id="SecurityGroup_0005__b950016236251">Inbound Rules</strong> or <strong id="SecurityGroup_0005__b584482513257">Outbound Rules</strong> tab, and then click <strong id="SecurityGroup_0005__b12854174602517">Allow Common Ports</strong>.<p id="SecurityGroup_0005__p025894789">The <strong id="SecurityGroup_0005__b78045152611">Allow Common Ports</strong> page is displayed.</p>
</li><li id="SecurityGroup_0005__li138463701712">Click <strong id="SecurityGroup_0005__b597614322611">OK</strong>.<p id="SecurityGroup_0005__p3696191411116">After the operation is complete, you can view the added rules in the security group rule list.</p>
</li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="vpc_SecurityGroup_0013.html">Managing Security Group Rules</a></div>
</div>
</div>
View Git Blame Copy Permalink