Creating a New Security Group

Video Guide



Document Guide

Step 1:

  • The default security group restricts ipv4 ingress traffic to other instances which share same security group, which this tutorial will replicate.
    Navigate to the security group menu under networking via the service catalog or the hamburger menu.

  • Clicking on the create button will open the security group creation wizard.


Step 2:

  • Name the new security group, and provide a description. 



  • Then click the X at the end of the first row under rules to clear the rule list and click Ok.



  • Creating the Group first like this will allow the security group to reference itself for a self group ingress restriction.

  • This rule needs to be modified, so click on the newly created security group and click on the modify button to open the modify wizard.



    Clicking the add button will add new rule rows to the wizard, add three for a total of four.

  • The first two rows will be the ingress traffic restriction rule to only group members.

    In the first column select ipv4 for the first row, and ipv6 for the second row.

    For both rows, the direction box will be INGRESS, and the protocol will be any. 

    (the protocol can be altered depending on your use case)

  • Again for both rows, the remote dropdown menu will be ‘Group’, and in the new dropdown that appears, click on the name of this security group.

  • For the last two rows, select ipv4 to a row and ipv6 to the second. 

    This time for both the direction is ENGRESS, the protocol will be any, and the remote will be any.

  • Clicking 'Ok' will save these modifications.



To summarize, this newly created security group restricts incoming requests to only instances who share this security group.

Last modified: Wednesday, 30 May 2018, 9:30 AM