A high level of security is ensured by setting access policy on IP addresses and ports for inbound/outbound traffic between internal VM or with external Internet and allowing access for the permitted traffic only.
A web-based console enables setting separate rules for inbound/outbound traffic without directly accessing the server for setting firewall security rules. Each rule can filter out unauthorized traffic using protocol and port numbers. In addition, by uniformly applying firewall rules, work time will be shorter and installment of firewalls will be made easier while not omitting rules.
Security Group needed for VM can easily be created using a web-based console. Application regulations, including target IP addresses, subnets, protocols/ports, and application scope can also easily be set and managed.
Firewall logs generated in Security Group may be saved by Group using the user’s storage resources. Permit/Allow log history supports fast troubleshooting and recovery in the case of an issue.
- Distributed firewall (logical firewalls that control communications between VM within VPC)
- Create Security Group to be used in virtual servers, GPU servers, Auto-Scaling groups, Database, Elasticsearch, and Kubernetes Engine
- Resources that use Security Group reusable in various resources by setting source IP for inbound traffic and destination IP for outbound
- Target IP address setting, protocol/port setting, and inbound/outbound setting
- Rules applied in scale (IP/ports applied to various addresses using ',’ and '-‘)
- 1,000 rules allowed per project
- Select log saving when creating a Security Group and set storage option by selecting Object Storage within same project
- Save target IP addresses, ports, and allow/deny status by time