Introduction to Public Cloud Security Groups

1.Access the backend management, select "Product & Services" > "Public Cloud," and choose the cloud server you want to operate on. Click on it to enter.

 

 

2.Select the "Security Group" feature, then click on "Create Security Group." Provide a custom name for the security group and click "OK" to confirm.

 

 

3.After creating the security group, you can choose to apply the security group and view security group policies, create new security group policies, or delete security group policies.


 

  • Select "Add Rule" and choose the appropriate rule direction based on your needs. The direction for incoming traffic to the cloud server is "Inbound" while the direction for the cloud server accessing external resources is "Outbound."

 

  • Allow the desired protocols based on your needs.
 
 
 
 
 
 

Application Type
 
 
 
 

Protocol 
 
 
 
 

Port Range 
 
 
 
 

Description
 
 
 
 

HTTP 
 
 

TCP 
 
 

80 
 
 

Default port for the HTTP protocol
 
 
 
 

HTTPS 
 
 

TCP 
 
 

443 
 
 

Default port for the HTTPS encrypted protocol 
 
 
 
 

SSH 
 
 

TCP 
 
 

22 
 
 

Default port for SSH protocol 
 
 
 
 

FTP 
 
 

TCP 
 
 

21 
 
 

Default port for FTP protocol
 
 
 
 

TELNET 
 
 

TCP 
 
 

23 
 
 

Default port for Telnet
 
 
 
 

MySQL 
 
 

TCP 
 
 

3306 
 
 

Default port for MySQL database
 
 
 
 

All TCP
 
 

TCP 
 
 

1~65535 
 
 

All TCP ports
 
 
 
 

All UDP 
 
 

UDP 
 
 

1~65535 
 
 

All UDP ports
 
 
 
 

All TCP+UDP 
 
 

TCP+UDP 
 
 

1~65535 
 
 

All TCP and UDP ports 
 
 
 
 

Customized
 
 

TCP or UDP
 
 

1~65535 
 
 

Custom port range

To allow a specific service port, such as a random remote port (e.g., 4125), after applying the security group, you need to create a new security group policy. Select "Custom TCP" and specify the port range as the single port you want to allow (e.g., 4125) or a range of ports (e.g., 4125-4128) if you need to allow multiple consecutive ports. The rules for security group policies specify the protocol and port range to be affected:

  • Select "Allow All" to allow all protocols and ports.
  • For a single port, specify the port number (e.g., 22).
  • For a range of ports, specify the start and end ports separated by a dash (e.g., 22-30).
  • For multiple ports, specify individual port numbers or ranges separated by commas (e.g., 22, 23-30).
  • To allow all ports, leave the field empty or specify the range as 1-65535

  • Authorized IP: 

  An authorized IP can be a single IP address or an IP address range:

- Single IP address: For example, 192.168.10.10/32

- IP address range: For example, 192.168.52.0/24

- All IP addresses: 0.0.0.0/0

 

  • Note: Fill in the necessary remarks as needed.

 

4.The control panel also allows you to set security group rules and bind or unbind security groups. Please refer to the login method for accessing the control panel

 

5.To set security group rules, you need to create a new security group or bind an existing one.

 

6.Click on the bound security group to set the rules.

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Manual installation of the operating system on the public cloud

1.Log in to the raksmart backend and click on "Products & Services."   2.Enter the cloud...

To enable Google two-factor authentication in the public cloud

To ensure the security of user Rak Cloud management panel, Rak Cloud service panel supports...

How to build an internal network in the public cloud

To create an internal network for cloud virtual machines, ensure that the machines are on the...

How to enter rescue mode in public cloud

1. If the server's operating system cannot boot normally but you need to back up data, you can...

Operating the Public Cloud Snapshot/Backup Function

1.In the backend, go to "Product Services" and click on "Public Cloud." Find the desired product...