yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity

geminidb_umn

Browse Source 
Reviewed-by: Székely, Ond <ond.szekely@t-systems.com>
Co-authored-by: Ru, Li Yi <liyiru7@huawei.com>
Co-committed-by: Ru, Li Yi <liyiru7@huawei.com>
This commit is contained in:
Liyiru
2024-07-30 09:47:31 +00:00
committed by zuul
parent d62a949ca4
commit 73adfe6d50
97 changed files with 4523 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
docs/geminidb/umn/nosql_02_0004.html Normal file
View File

@ -0,0 +1,19 @@
<a name="nosql_02_0004"></a><a name="nosql_02_0004"></a>
<h1 class="topictitle1">Configuring Security Group Rules</h1>
<div id="body1568079458237"><div class="section" id="nosql_02_0004__section3152058916230"><h4 class="sectiontitle"><strong id="nosql_02_0004__b16218454114513">Scenarios</strong></h4><p id="nosql_02_0004__p199191161250">The default security group rule allows all outgoing data packets. <span id="nosql_02_0004__text84651218553">ECS</span><span id="nosql_02_0004__text154659184517"></span>s and <span id="nosql_02_0004__text346516182514">GeminiDB</span> instances in the same security group can access each other. After a security group is created, you can create different rules for that security group, which allows you to control access to the <span id="nosql_02_0004__text24651218954">GeminiDB</span> instances that in it.</p>
<p id="nosql_02_0004__p43222116204125">The following describes how to set security groups.</p>
</div>
<div class="section" id="nosql_02_0004__section9456131432010"><h4 class="sectiontitle"><strong id="nosql_02_0004__b622952211485">Precautions</strong></h4><ul id="nosql_02_0004__ul10612183218515"><li id="nosql_02_0004__li8531887277">If the ECS and DB instance are in the same security group, they can communicate with each other by default. No security group rule needs to be configured.</li><li id="nosql_02_0004__li06121321516">If the ECS and DB instance are in different security groups, you need to configure security group rules for the ECS and DB instance separately.<ul id="nosql_02_0004__ul13612732951"><li id="nosql_02_0004__li4571145411248">To allow access to the <span id="nosql_02_0004__text20661161562618">GeminiDB Cassandra</span> instance, you need to configure an inbound rule for the security group that the instance nodes belong to.</li><li id="nosql_02_0004__li14612163220515">By default, the security group allows all outbound data packets, so you do not need to configure a security rule for the ECS. If not all access from the ECS is allowed, you need to configure an outbound rule for the ECS.</li></ul>
</li></ul>
<ul id="nosql_02_0004__ul11655735142317"><li id="nosql_02_0004__li18793238132312">By default, you can create up to 500 security group rules. However, too many rules increase network latency for initial access, so it is recommended that you add no more than 50 rules for each security group.</li></ul>
</div>
<div class="section" id="nosql_02_0004__section9281154719202"><h4 class="sectiontitle">Procedure</h4><ol id="nosql_02_0004__ol49383781586"><li id="nosql_02_0004__li93899141586"><span>Log in to the management console.</span></li><li id="nosql_02_0004__li1870917810588"><span>Click <span><img id="nosql_02_0004__image145037112071" src="en-us_image_0000001815205124.png"></span> in the upper left corner and select a region and a project.</span></li><li id="nosql_02_0004__li297543615857"><span>Click <strong id="nosql_02_0004__b16609152125710">Service List</strong>. Under <strong id="nosql_02_0004__b12610162114575">Network</strong>, click <strong id="nosql_02_0004__b1061219218575">Virtual Private Cloud</strong>.</span></li><li id="nosql_02_0004__li3171015115916"><span>In the navigation pane on the left, choose <span class="menucascade" id="nosql_02_0004__menucascade113137392162"><b><span class="uicontrol" id="nosql_02_0004__uicontrol931312398163">Access Control</span></b> &gt; <b><span class="uicontrol" id="nosql_02_0004__uicontrol103131952161613">Security Groups</span></b></span>.</span></li><li id="nosql_02_0004__li140569415930"><span>On the <strong id="nosql_02_0004__b497332911519">Security Groups</strong> page, click the security group name.</span></li><li id="nosql_02_0004__li5489049115946"><span>On the <strong id="nosql_02_0004__b4976153713515">Inbound Rules</strong> tab, click <strong id="nosql_02_0004__b1697715371258">Add Rule</strong>. In the displayed <strong id="nosql_02_0004__b297743711512">Add Inbound Rule</strong> dialog box, set required parameters to add inbound rules. On the <strong id="nosql_02_0004__b271817563411">Outbound Rules</strong> tab, click <strong id="nosql_02_0004__b37191456543">Add Rule</strong>. In the displayed <strong id="nosql_02_0004__b37191156048">Add Outbound Rule</strong> dialog box, set required parameters to add outbound rules.</span></li><li id="nosql_02_0004__li436714418571"><span>In the displayed dialog box, set required parameters.</span></li><li id="nosql_02_0004__li21369327151121"><span>Click <strong id="nosql_02_0004__b191192582312">OK</strong>.</span></li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="nosql_02_0006.html">Connecting to a GeminiDB Cassandra Instance Over Private Networks</a></div>
</div>
</div>