Details

    • Benefit:
      Medium
    • Security:
      No
    • SLA:
      Not Applicable
    • Epic Link:
    • Rank:
      0|i01vxr:

      Description

      Currently within Eucalyptus, instances belonging to the same security group do not have any restrictions (ie all ports can be seen). This is not the case for AWS: every security group is all close by default, and the user needs to open up the port. I assume that the default security group have the all open ports to itself by default, ie:

      GROUP	sg-xxxxxxxxxx	xxxxxxxxxxxx	default	default group
      PERMISSION	048212016277	default	ALLOWS	tcp	0	65535	GRPNAME	default
      PERMISSION	048212016277	default	ALLOWS	udp	0	65535	GRPNAME	default
      PERMISSION	048212016277	default	ALLOWS	icmp	-1	-1	GRPNAME	default
      

      without the above rules, no communication would happens across instances.

        Gliffy Diagrams

          Lucidchart Diagrams

            Attachments

              Issue links

                Activity

                  People

                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    5 Start watching this issue

                    Dates

                    • Created:
                      Updated: