Example security group settings for compute nodes

Virtual Storage Platform One SDS Block Cloud Setup and Configuration Guide

Version

1.17.x

Audience

anonymous

Part Number

MK-24VSP1SDS008-04

Control port (Linux)

Inbound

Type	Protocol	Port range	Source	Remarks
SSH	TCP	22	IP address, CIDR block, or security group of the source	Configuration for allowing SSH connection from the source
Custom ICMP	Echo request	-	CIDR block of the VPC	Required for communication confirmation by using ping

Outbound

Type	Protocol	Port range	Source	Remarks
All traffic	All	All	0.0.0.0/0	-

Control port (Windows)

Inbound

Type	Protocol	Port range	Source	Remarks
RDP	TCP	3389	IP address, CIDR block, or security group of the source	Configuration for remote desktop connection
Custom ICMP	Echo request	-	CIDR block of the VPC	Required for communication confirmation by using ping

Outbound

Type	Protocol	Port range	Source	Remarks
All traffic	All	All	0.0.0.0/0	-

Compute port (Linux and Windows)

Inbound

Type	Protocol	Port range	Source	Remarks
Custom ICMP - IPv4	Echo request	-	IPv4 CIDR block for the compute network subnet	Required for communication confirmation by using ping
Custom ICMP - IPv6	IPv6 ICMP	All	IPv6 CIDR block for the compute network subnet	Required for using IPv6 addresses
Custom TCP	TCP	3205	IPv4 CIDR block for the compute network subnet IPv6 CIDR block for the compute network subnet	Required for using IPv6 addresses and an iSNS server

Type

Protocol

Port range

Source

Remarks

Custom ICMP

- IPv4

Echo request

IPv4 CIDR block for the compute network subnet

Required for communication confirmation by using ping

Custom ICMP - IPv6

IPv6 ICMP

All

IPv6 CIDR block for the compute network subnet

Required for using IPv6 addresses

Custom TCP

TCP

3205

Required for using IPv6 addresses and an iSNS server

Outbound

Type	Protocol	Port range	Source	Remarks
All traffic	All	All	0.0.0.0/0	-