Frequently asked questions regarding the Cloud Platform Security Groups

Why does all the built-in security groups have no restrictions on all outbound traffic?

We have configured the built-in security groups to have no restriction on all outbound traffic to simplify the setup.

Custom Security Groups can be created and applied blocking outbound access if required.

Will the inbound rules be added to my quota?

Yes, all Security Group rules will be counted to your quota (default 100).

Does Security Groups behave as least restrictive or most restrictive?

Security Groups behave as least restrictive.

This means that if you have configured Security Groups with conflicting rules the Security Group with the least restrictive rule will be active. (ALLOW over BLOCK).

Can I change the name or description of an Security Group?

Yes.

This can be done through the API with the command:

$ openstack security group set --name <name> --description <description> <UUID>
Tags: