Security Group Management

Create Security Group

You can create a security group that consists of a set of rules to control the inbound network traffic and outbound network traffic. When the security group is associated with or assigned to an instance, it controls the inbound network traffic to the instance and outbound network traffic from the instance. You can create a security group to control TCP, UDP and ICMP traffic.

You can configure rules to

  • Allow all inbound and/or outbound TCP, UDP and ICMP traffic, in general
  • Allow traffic to and from specific TCP, UDP and ICMP ports
  • Allow all inbound and/or outbound traffic irrespective of the protocol

Any traffic that does not match the rules specified in the security group assigned to an instance, is disallowed to and from the instance.

You must be a self-service user or an administrator to perform this operation.

To create a security group, follow the steps given below.

  1. Log in to Clarity.
  2. Click Networks in the left panel.
  3. Click the Security Groups tab.
  4. Click Create New Security Group. Create Security Group
  5. Enter Name and Description for the Security Group.
  6. Create the rules in the security group as required. Do either of the following.
    • Click Add Inbound Rule in the Inbound tab to add an inbound rule. Repeat the step to add more rules for inbound network traffic.
    • Click Add Outbound Rule in the Outbound tab to add outbound rule. Repeat the step to add more rules for outbound network traffic.
    • Click the cross-sign icon on the rightmost corner of a rule to remove the rule from the security group.
  7. Click Create Security Group.

The security group is created with the rules specified for inbound and outbound network traffic. The security group can be assigned to an instance.

Edit Security Group

You can edit a security group at any time. When you edit a security group, you can add or remove individual rules for inbound and outbound traffic the name as well as the external network that the router should connect to.

You must be a self-service user or an administrator to perform this operation.

To edit a security group, follow the steps given below.

  1. Log in to Clarity.
  2. Click Networks in the left panel.
  3. Click the Security Groups tab.
  4. Select the security group that you want to edit.
  5. Click Edit Security Group on the toolbar seen above the list of security groups. Edit Security Group
  6. Edit the rules in the security group as required. Do either of the following.
    • Click Add Inbound Rule in the Inbound tab to add an inbound rule.
    • Click Add Outbound Rule in the Outbound to add outbound rule.
    • Click the cross-sign icon on the rightmost corner of a rule to delete the rule.
  7. Click Update Security Group.

The security group is saved with the changes made during the edit.

Delete Security Group

You can delete a security group that you no longer require for use. You cannot delete a security group that is assigned to an instance.

You can delete multiple security groups at a time.

You must be a self-service user or an administrator to perform this operation.

To delete one or more security groups, follow the steps given below.

  1. Log in to Clarity.
  2. Click Networks in the left panel.
  3. Click the Security Groups tab.
  4. Select the check boxes for the security groups that you want to delete. Edit Security Group
  5. Click Delete Security Group on the toolbar seen above the list of security groups.
  6. Click Delete Security Group on the message if you are sure that you want to delete the selected security groups.

The selected security groups are deleted and the deleted security groups are no longer available for use.