Note: Please go to docs.rightscale.com to access the current RightScale documentation set. Also, feel free to Chat with us!
Home > Guides > Dashboard Users Guide > Clouds > Generic > Security Groups > Actions > Add a Security Group to Itself

Add a Security Group to Itself

Objective

Add a security group to itself so servers in that group can communicate with each other using all protocols and ports, on private IP addresses.

Table of Contents

  1. Objective
  2. Overview
  3. Prerequisites
  4. Steps
    1. Add Group
  5. See also

Overview

Servers in the same security group can communicate with each other over both private and public IP addresses, on the ports that are explicitly open to those addresses in the servers' security groups.

In general, it is best to set up servers in your configuration to communicate with each other only over private IP addresses. To allow communication across all ports over private IP addresses for all servers in a security group, you can add the security group to itself. This is similar to adding a security group to another security group, except that it applies to servers in the same security group rather than another, external security group.

Important!

If you are on a UCP account (Unified Cloud Platform), you will need to create security groups within the network manager. For more information, see Networks.

Prerequisites

  • A security group.
  • Adding and editing security groups requires the "security_manager" role.  See User Role Privileges.

Steps

Add Group

  • Open the security group that you need to edit (Clouds -> CloudName -> Security Groups) and click Edit.
  • Select "Group" in the New Permission dropdown (IPs is the default). You must manually enter the security group name in the "Group" field in order to add it to itself.
    Important!  This is different than selecting the "default" security group, which is pre-populated in the "Group" field. Leaving "Group" set to "default" will likely produce undesired results in your deployment.

  • In the example below, the group "Standard" is used.
    Warning:  Ensure that the group name is spelled correctly.

screen-SGAddGroupServices.png

 

  • Click Add. The security group is added to itself and displayed in the Permissions section, as in the screen shot below.  ("Standard" in our example, along with default values for all other fields.)

 

screen-SecurityGroupAddGroupPerms-v1.png

 

After you add the "Standard" security group to itself, all servers in the "Standard" security group can establish connections (i.e., send requests) to other servers in that security group, on any ports that security group "Standard" instances are listening on. Connections are established over private IP addresses.

See also

You must to post a comment.
Last modified
15:03, 25 Sep 2013

Tags

This page has no custom tags.

Classifications

This page has no classifications.

Announcements

None

Powered by MindTouch ®

© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.