Add authorization objects in batches to security group rules

Others 2022-04-28 16:55:58 views: 0

Summary:  How do security group rules open common ports in batches? How to authorize network segments in batches? This article will introduce you to the optimization and changes made in the ECS console for the typical scenario of routine maintenance of security group rules.

background

During routine maintenance of security groups, there are two common scenarios:
1. Batch authorize multiple network segments for a certain port range, such as: (eg: 22 ports are paired with 10.0.0.1/32, 10.0.0.2/32, 10.0 .0.3/32 three network segment authorization).
2. For a certain network segment, open multiple ports in batches, such as: open 22, 80, 443 and other ports for the 10.xxxx/16 network segment).

The ECS console provides two functions for these two scenarios: [Add security group rule], which solves the problem in scenario 1; [Quickly create rule], which solves the problem in scenario 2. The reason why the two functions are not combined is that multiple ports are opened in batches and multiple network segments are authorized in one operation, and the created security group rule will be a result of m * n, which increases the cost of understanding At the same time, it will increase the chance of creating unexpected rules but reduce the efficiency.

How to add authorization objects in batches?

1. Enter the configuration rules page 2. Click to add a security group rule 3. Fill in the port range, and specify the authorization object to access by address segment, in the authorization object, fill in the network segment, multiple network segments are separated by [,], click Click OK to see the newly created rule.
image

image

image
image

How to open multiple common ports in batches

1. Also on the Configure Rules page, click Quick Create Rules.
image

2. Check multiple common ports to specify a custom port. The authorization type also selects the address segment access, and the authorization object fills in the desired network segment and clicks OK to see the rules created in batches.
image
image

Hopefully these two features will improve efficiency and save your time when maintaining security groups.

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=326456499&siteId=291194637
Recommended
Ranking
2019 JD pen questions - Choir
Grafana installation & basic configuration
How to solve the high gas fee of Filecoin? The official attitude is bright!
Informatization development 59
Date,DateFormat,Calendar,
Introduction to MySQL - Understanding MySQL
win10 conexão de área de trabalho remota ubuntu20 (RDP)
52. Customize generics on methods
Detailed explanation of CAP, ACID, BASE theory and NWR practice strategy
UnknownHostException:XXX:Name or service not know
Daily
More
2024-08-01(0)
2024-07-31(0)
2024-07-30(0)
2024-07-29(0)
2024-07-28(0)
2024-07-27(0)
2024-07-26(0)
2024-07-25(0)
2024-07-24(0)
2024-07-23(0)

Code World

© 2018 codetd.com