Objective
Use Security Group to set up a simple firewall in the portal.
Requirements
• Already created Varidata Cloud Server instance.
• By default, security group will DENY all incoming traffic except PING.
• There are quotas on the number of security groups rules to each instance.
Instructions
Below is an example for allowing SSH and HTTP (port 80) service.
Step 1: Select “MyServices” -> “Manage Product” -> “Cloud Server Management” -> “Security Group”.
Step 2: Click “Add Rule”.
Step 3: Similar to general firewall setting, it requires to define:
• Protocol: TCP / UDP / ICMP,
• Direction: incoming / outgoing,
• Type: “IPv4 / IPv6”,
• Open Port: Port / Port Range / All Port,
• Custom Port / Pr-define Port,
• Source / destination IP: Single / Range
Step 4: Allow SSH (TCP Port 22) incoming traffic from IP 123.123.123.123 only.
Step 5: Allow HTTP (TCP Port 80) incoming traffic from ALL.
Step 6: Summary
• Deny all traffic
• Allow all outgoing traffic (Cloud Server Default)
• Allow PING incoming traffic (Cloud Server Default)
• Allow SSH (22) from IP 123.123.123.123 access
• Allow HTTP (80) access from all