Ask Your Question

How to restrict the communication between two hosts in the same network?

asked 2018-06-28 08:55:35 -0600

vamsee_007 gravatar image

I've installed Openstack in my CentOS VM using packstack installer. Have created a network, and also instances. Now I want to restrict the communication between those instances created in the same network. How can i do it.

edit retag flag offensive close merge delete


Security groups for blocking traffic, and Quality of Service for controlling bandwidth.

Bernd Bausch gravatar imageBernd Bausch ( 2018-06-28 16:35:53 -0600 )edit

Thanks for the quick response, can i know what to do exactly with Security groups?

vamsee_007 gravatar imagevamsee_007 ( 2018-06-29 03:02:35 -0600 )edit

1 answer

Sort by ยป oldest newest most voted

answered 2018-06-29 03:46:31 -0600

Start here:

The 2 minutes overview: OpenStack puts a firewall around an instance. By default, any incoming traffic is blocked, and any outgoing traffic is permitted. A security group and the rules it contains selectively opens and closes ports in that firewall.

A rule includes protocol (ICMP, TCP, UDP) and port (or ICMP type), as well as address ranges and other security groups. Incoming traffic that matches protocol, port/type, security group and address range will be let through. Of course, you can also create rules for outgoing traffic.

You then specify security groups (any number) when launching instances.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2018-06-28 08:55:35 -0600

Seen: 91 times

Last updated: Jun 29 '18