Shulou(Shulou.com)06/02 Report--

How to configure the security group rules for CVM? In view of this problem, this article introduces the corresponding analysis and answers in detail, hoping to help more partners who want to solve this problem to find a more simple and feasible way.

The CVM security group is an instance-level firewall that controls the inbound / outbound traffic of the cloud database. You can bind a security group when purchasing an instance, or you can bind a security group in the console after purchasing an instance.

Add security group rules to Tencent CVM

1. Log in to the Tencent Cloud security group console, select the security group to be updated, and click the security group name.

two。 On the "inbound / outbound rules" page, click "add Rule". From the add rules page, configure rule information, such as source / destination specified as 10.0.0.0Universe 0, protocol port specified as TCP:3306, click * * finish * *.

Each rule of a security group can contain up to four valid fields: ipProtocol, cidrIp, or sgId (both are exclusive and cannot be entered at the same time), portRange, and action. The action field is required, and if the other fields do not appear, it means that when this rule processes network messages, it does not consider this field and matches all of them.

You can also configure a security group on the CVM. You only need to log in to the management backend, go to the personal Center-Server Management-Management interface, select more-Security group features, enter the security group name and description, click add, and the security group will be created successfully.

The configuration items supported by adding security group rules are: protocol (TCP/UDP/ICMP), source IP type IP address, source port and destination port, priority and behavior (block or release). A maximum of 100 rules can be added to each security group, and each rule has a priority attribute. The larger the number, the higher the priority. The range of available values is 1-1024.

By deploying CVM security groups, you can achieve private network interconnection and resource copying between different servers in the same region. When the server is controlled by hackers, you can also modify the remote port to restrict login to IP;. In addition, the security group also supports remote connection and management of servers through the public network, and users can access your website through HTTP and HTTPS services.

The answer to the question on how to configure the CVM security group rules is shared here. I hope the above content can be of some help to you. If you still have a lot of doubts to be solved, you can follow the industry information channel for more related knowledge.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.