cloudstack-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Florent Paillot <florent.pail...@inria.fr>
Subject Re: Security Groups default behavior
Date Mon, 04 Nov 2019 18:04:24 GMT
Hi Paul,
Thanks for your quick answer !

Florent


----- Mail original -----
> De: "Paul Angus" <paul.angus@shapeblue.com>
> À: "users" <users@cloudstack.apache.org>
> Envoyé: Lundi 4 Novembre 2019 18:20:11
> Objet: RE: Security Groups default behavior

> Hi Florent,
> 
> No, two VMs in the same security group will have the same rules applied to them.
> So if they both allow outbound port 22, they won't be able to talk over SSH,
> as neither allows inbound SSH.
> 
> If your network was created with a default allow, then they will be able to
> communicate over all ports until you start applying rules to them.
> 
> Paul.
> 
> paul.angus@shapeblue.com
> www.shapeblue.com
> Amadeus House, Floral Street, London  WC2E 9DPUK
> @shapeblue
>  
> 
> 
> 
> -----Original Message-----
> From: Florent Paillot <florent.paillot@inria.fr>
> Sent: 04 November 2019 16:01
> To: cs users <users@cloudstack.apache.org>
> Subject: Security Groups default behavior
> 
> Hello,
> I'm looking for the default behavior for Security Groups when using a shared
> network with SG support. Can't find it in the docs.
> Are two VM in the same SG implicitly allowed to communicate with each other ?
> 
> Maybe i'm wrong but it's seemed to be the case with 4.9.3 (KVM) but not anymore
> with 4.11.3 (KVM).
> 
> Thanks

Mime
View raw message