Ask Your Question
0

How to restrict the communication between two hosts in the same network?

asked 2018-06-28 08:55:35 -0600

vamsee_007 gravatar image

I've installed Openstack in my CentOS VM using packstack installer. Have created a network, and also instances. Now I want to restrict the communication between those instances created in the same network. How can i do it.

edit retag flag offensive close merge delete

Comments

Security groups for blocking traffic, and Quality of Service for controlling bandwidth.

Bernd Bausch gravatar imageBernd Bausch ( 2018-06-28 16:35:53 -0600 )edit

Thanks for the quick response, can i know what to do exactly with Security groups?

vamsee_007 gravatar imagevamsee_007 ( 2018-06-29 03:02:35 -0600 )edit

1 answer

Sort by ยป oldest newest most voted
1

answered 2018-06-29 03:46:31 -0600

Start here: https://docs.openstack.org/nova/queen....

The 2 minutes overview: OpenStack puts a firewall around an instance. By default, any incoming traffic is blocked, and any outgoing traffic is permitted. A security group and the rules it contains selectively opens and closes ports in that firewall.

A rule includes protocol (ICMP, TCP, UDP) and port (or ICMP type), as well as address ranges and other security groups. Incoming traffic that matches protocol, port/type, security group and address range will be let through. Of course, you can also create rules for outgoing traffic.

You then specify security groups (any number) when launching instances.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2018-06-28 08:55:35 -0600

Seen: 56 times

Last updated: Jun 29 '18