Security Group Reference
The security group file is a YAML file defining the security group and its rules. Below is an exmaple:
name
The name of this security group.
description
The short description of this security group.
rules
The rules for this security group to define the incoming and/or outcoming internet traffic.
port_range_min
The minimum port number in the range that is matched by the security group rule. If the protocol is TCP or UDP, this value must be less than or equal to the value of the
PortRangeMaxattribute. If the protocol is ICMP, this value must be an ICMP type.
port_range_max
The maximum port number in the range that is matched by the security group rule. The
PortRangeMinattribute constrains thePortRangeMaxattribute. If the protocol is ICMP, this value must be an ICMP type.
direction
The direction in which the security group rule is applied. The only values allowed are
ingressoregress. For a container, an ingress security group rule is applied to incoming (ingress) traffic for that container. An egress rule is applied to traffic leaving the container.
protocol
The protocol that is matched by the security group rule. Valid values are
tcp,udp,icmpor an empty string.
remote_ip_prefix
The remote IP prefix to be associated with this security group rule. You can specify either
RemoteGroupIDorRemoteIPPrefix. This attribute matches the specified IP prefix as the source IP address of the IP packet.
remote_group_name (Optional)
The remote group ID to be associated with this security group rule. You can specify either
remote_group_nameorremote_ip_prefix.
Last updated