Create and manage security groups

Security groups control the traffic of connected network interfaces based on defined inbound and outbound rules. The following describes how to create and manage security groups in the VPC service.

info

VPC role management follows IAM role-based access control (RBAC), and all users can create and manage security groups.
You can check your role in KakaoCloud console > Profile (top right) > Organization role or Project role.
Even if a security group is assigned to a Bare Metal Server (BMS) instance, the rules are not applied. Support will be added later.

Create security group

You can create and apply a new security group, other than the default security group, to the network interface connected to your instance. In general, at least one security group must be configured for a network interface.

Go to KakaoCloud console > Networking > VPC.
Click the Security Group menu, and then click the [Create security group] button.
Enter the information for the security group to create in the pop-up window.

Create security group

Category Description
Name Name of the security group
Description Description of the security group
Applied rules Configure inbound rules and outbound rules

Category	Description
Name	Name of the security group
Description	Description of the security group
Applied rules	Configure inbound rules and outbound rules

On the Inbound rules tab, click the [Add rule] button, and then enter the inbound and outbound rule information.

Category	Item	Description
Inbound rule	Protocol	Protocol for communication - Types: TCP / UDP / ICMP / ALL
	Source	You can enter the source IP to allow access, or enter `@` to specify a security group
	Port number	Port for communication - Enter the port number to allow (example: 80) - Enter the start and end of the port range to allow (example: 1000-2000)
	Rule description	Description of the rule
Outbound rule	Protocol	Protocol for communication - Types: TCP / UDP / ICMP / ALL
	Destination	You can enter the destination IP to allow access, or enter `@` to specify a security group
	Port number	Port for communication - Enter the port number to allow (example: 80) - Enter the start and end of the port range to allow (example: 1000-2000)

Click the [Create] button.

Manage security groups

View security group list and basic information

You can view the list of currently created security groups and their basic information.

Go to KakaoCloud console > Networking > VPC.
Click the Security Group menu, and then check the list of currently created security groups and their basic information.
Category Description
Name Name of the security group
Created at Date when the security group was created

Category	Description
Name	Name of the security group
Created at	Date when the security group was created

View security group details

You can view detailed information such as inbound rules and outbound rules of the security group.

Go to KakaoCloud console > Networking > VPC.
Click the Security Group menu, and then select the security group for which you want to view detailed information.
Check the detailed information of the security group on each tab.

Copy security group

You can copy a security group to create a new security group.

Go to KakaoCloud console > Networking > VPC.
Click the Security Group menu, and then select [⋮] > Copy for the security group to copy.
Enter the security group information and inbound/outbound rules in the pop-up window, and then click the [Copy] button.

Delete security group

You can delete a security group that is no longer used. However, the default security group cannot be deleted.

Go to KakaoCloud console > Networking > VPC.
In the Security Group menu, select [⋮] > Delete for the security group to delete.
Enter the information in the pop-up window, and then click the [Delete] button.

Manage inbound/outbound rules

You can add or delete inbound/outbound rules of the security group.

Rule	Description
Inbound	Manage protocol / port / IP CIDR range rules to allow packets entering resources connected to the security group
Outbound	Manage protocol / port / IP CIDR range rules to allow packets leaving resources connected to the security group

Go to KakaoCloud console > Networking > VPC.
Click the Security Group menu, and then select the security group for which you want to manage rules.
On the Inbound rules or Outbound rules tab, you can add or delete rules using each button.

Create security group​

Manage security groups​

View security group list and basic information​

View security group details​

Copy security group​

Delete security group​

Manage inbound/outbound rules​