Why use Security Groups ?
- Security Groups give you full control of your instance's network traffic. With special rules – composed of traffic directions, protocols and ports – you can regulate the inbound and outbound traffic regarding your ports.
- Control with inbound rules which ports of your instance should be open and accessible from the internet. Outbound rules on the other hand allow you to specify certain ports and protocols that should be able to reach the internet from your instance (for most use cases it is generally recommended to allow all outbound traffic).
- By default, all instances use the standard Security Group set up by Genesis Cloud. With this setting it is possible to ping (ICMP) your instance and reach it via SSH (TCP on port 22), as well as via HTTP and HTTPS ().
- Furthermore, the standard Security Group allows traffic on all ports and protocols to the internet. It is not possible to modify this standard Security Group. If you want to the characteristics of your firewall, remove the standard Security group and set up your own here.
Changing your security groups doesn’t have an impact on the internal communication between all your instances run on Genesis Cloud: we allow all internal network traffic between your instances on all ports and protocols. If you want to restrict also your internal traffic with Security Groups, reach out to email@example.com
How to create a new Security Group ?
Here is an overview of inbound and outbound rules:
|"ICMP"||ping your instance||no port specification possible|
|"SSH"||SSH traffic||set by default to “TCP port 22”|
How can I add or remove instances from my Security Group ?
To add or remove an instance to or from a Security Group, first select the affected 'Security Group' in your list of 'Security Groups' (Network > click on Security Group name).
- Adding an instance to a Security Group:
- Choose an instance you want to add from the dropdown menu on the right side. Then click on 'Add Instance'.
- Removing an instance from a Security Group:
To remove any instance from a Security Group use the 'Remove Instance' button next to that particular Instance from the list of all instances in that Security Group.