Logged in: Logged in as: Log in
Register
call_us_today.gif

subscribe_rss.gif
Search:
Page last modified 00:24, 19 Sep 2008 by deano
RightScale Support Wiki > Tutorials > Deployment Setup > Create a Security Group

Create a Security Group

Table of contents
  1. 1. Objective
  2. 2. Setup a Security Group

Objective

To create a security group for your production instances.

NOTE: You can only create a security group with a Developer or Premium account.

Setup a Security Group

In the RightScale Dashboard, go to Design -> EC2 -> Security Groups.  By default, there is already a default user group listed.  But, you'll need to create a custom security group to handle your production deployment.

Click the New button.

01-security_group_home.gif

  

Call the Group Name production and add a brief description.  Click Create.

02-security_group_create.gif

We will need to open two ports to provide access to any instances that are in this security group.  To open a port, go to "Add IPs" and enter the port numbers that you want to open. 

Enter the following port numbers and click Add.

  • Open a port for 22.  You need to open this port so that you can SSH into your instance and to also provide access for the Dashboard to interface with your instance.
  • Open a port for 80.  You need to open this port so that you can access your web application via a web browser.
  • Make sure that the TCP IPs is set to 0.0.0.0/0 and not 0.0.0.0/32.

 

03-security_group_22.gif

  


If you need ssl, you'll probably want to add port 443.  If there are other services that need to be publicly accessible, you'll also need to create the appropriate open ports.

AWS provides a feature that allows you to grant access to a specfic security group without allowing access to the rest of the world.  However, it's important that machines within the production security group are able to access each other. 

To grant them access, enter production in the “Add Group” section and click Add.

05-security_group_production.gif


Congratulations!  You created a Security Group that you can use for your "production" deployment where you've defined two open ports (20 and 80) and a "production" group that has private access to the deployment.  Anyone who is not a member of the "production" group will not be able to access the site.

06-security_group_all.gif

  

 ----------------------

Did you find this document helpful?  Please feel free to leave us a comment below so that we'll know how we can improve our documentation.  Thanks!

  

  

  

Tag page
What links here

Files 0

Attach file or image
 

Images 6

« prev next »
Viewing 1 - 6 of 6 images | View All
All Permissions
All Permissions
06-securi...  Actions
Production Group
Production Group
05-securi...  Actions
Add port 22
Add port 22
03-securi...  Actions
Add port 80
Add port 80
04-securi...  Actions
Create a Security Group
Create a Security Group
02-securi...  Actions
Security Group Home
Security Group Home
01-securi...  Actions
Viewing 1 of 1 comments: view all
#1
haroldship says:
I'm confused about the "group". It says above "Anyone who is not a member of the "production" group will not be able to access the site."

How do I manage this group? E.g. how do I add users?
Posted 10:09, 18 Aug 2008
Viewing 1 of 1 comments: view all
You must login to post a comment.
Powered by MindTouch Deki Open Source Edition v.8.08