CSS Corp Open Source Services

Archive for the ‘Nova’ Category

[OpenStack Beginner's Guide for Ubuntu 11.04] Security

leave a comment »

Openstack provides ingress filtering for the instances based on the concept of security groups. OpenStack accomplishes ingress filtering by creating suitable IP Tables rules. A Security Group is a named set of rules that get applied to the incoming packets for the instances. You can specify a security group while launching an instance. Each security group can have multiple rules associated with it. Each rule specifies the source IP/network, protocol type, destination ports etc. Any packet matching these parameters specified in a rule is allowed in. Rest of the packets are blocked.

Read the rest of this entry »

Follow

Get every new post delivered to your Inbox.

Join 171 other followers