Creating security groups

Managing security groups

Instances in heiCLOUD are located behind a firewall. This firewall receives its rules from a security group. Depending on how you want to access an instance, you need to create security groups with the rules you require.

  1. Log in to heiCLOUD.
  2. Under Project → Compute, click on Access & Security. Click on the Security Groups tab. You will see an overview of your (existing) security groups.
  3. (Optional) In the top right, click on the Create Security Group button. A new window will open.
  4. (Optional) Enter a name for the security group (e.g. SSH-Access).
  5. To manage a security group, click on the Manage Rules button to the right in the row of the relevant security group. A new window will open.
  6. In the top right, click on the Add Rule button. A new window will open.
  7. In the Rule drop-down menu, select the option for which you want to open a port (e.g. for SSH access to an instance, select the option SSH).
  8. (Optional) In the CIDR box, you can choose an address range from which access is possible. By default, worldwide access is possible ("any", 0.0.0.0/0). To limit access to the university network, create two identical rules, specifying an address range of 129.206.0.0/16 for the first and 147.142.0.0/16 for the second.
  9. Click on Add to complete the process.