Add firewall group rules
Before adding a firewall group, you need to know:
- Before adding any firewall group rules to the firewall group, all accesses are allowed in the out direction, and ports 22, 3389, 80 and 443 are opened by default in the in direction.
- The firewall group rule matching is based on priority matching. Priority rules take effect in the order they are created. In case of rule conflict, the rule created first shall prevail, and the priority order can be adjusted manually.
- The firewall group is only effective for the access direction of the public network.
Steps:
- Enter the firewall group page.
- Find firewall group details, enter firewall group page.
- Add firewall group rules
- Click the rules tab page and click "Add Rules"
- Configure the new firewall group rule in the rule list
| Name | Description |
|---|---|
| Direction | Public network ingoing direction Public network outgoing direction |
| Authorization policy | Allow: release the corresponding access request of the commodity Reject: directly delete the data packet and no information will be returned |
| Protocol type | Protocol types include: All: all protocol types are supported. TCP: supports TCP protocol. UDP: supports UDP protocol ICMP: supports ICMP Protocol. GRE: support GRE protocol. |
| Port range | When the protocol type is custom TCP or custom UDP, you can manually set the port range. For example: 22, 22 / 23 |
| Authorized object | Support setting CIDR address block. For example: 1.1.1.1/32 Notes: 1. If 0.0.0.0/0 is filled in, it means that all IP addresses are allowed to access. Please be careful when setting. 2.The maximum entry capacity of firewall group rules is 50. |
| Description | Firewall group rule description information. |