Skip to main content

Security Group Overview

Security Groups in Vietnix Cloud are a fundamental feature for protecting your cloud resources. They act as virtual firewalls, allowing you to control inbound and outbound traffic to your virtual machines and services. With Security Groups, you can define rules that specify which IP addresses, protocols, and ports are permitted or denied, helping to safeguard your infrastructure from unauthorized access and threats.

Key Features

  • Rule-Based Access Control: Easily create and manage rules to allow or block specific traffic based on source IP, destination IP, protocol (TCP, UDP, ICMP), and port ranges.
  • Stateful Filtering: Security Groups track the state of connections, automatically allowing return traffic for permitted requests.
  • Granular Management: Apply different Security Groups to different instances or services, tailoring security policies to each workload.
  • Default Deny: By default, all inbound traffic is denied until you explicitly allow it, ensuring a secure baseline.
  • Flexible Updates: Modify rules at any time without restarting your instances, enabling rapid response to changing security requirements.

Typical Use Cases

  • Restricting SSH or RDP access to trusted IP addresses only.
  • Allowing HTTP/HTTPS traffic to web servers while blocking other ports.
  • Segregating environments (e.g., production, staging, development) with distinct security policies.
  • Enabling secure communication between application tiers.

Benefits

  • Enhanced Security: Minimize attack surface and prevent unauthorized access.
  • Simplified Management: Centralized control of network security for all cloud resources.
  • Compliance: Support for regulatory requirements through controlled access and logging.

Security Groups are essential for building a secure cloud environment in Vietnix Cloud. By leveraging flexible, rule-based controls, you can protect your applications and data while maintaining the agility and scalability of the cloud.