Creating a Security Group


A security group is a collection of access control rules for ECSs that have the same security protection requirements and are mutually trusted in a VPC.

To improve ECS access security, you can create a security group and add ECSs in the VPC to the security group.

By default, a tenant can create a maximum of 100 security groups.

After a security group is created, it comes with default security group rules even if you do not specify a rule.

  • Outbound rule: allows all outgoing data packets (outbound traffic).
  • Inbound rule: allows communication among ECSs within the security group and discards all incoming data packets (inbound traffic).


  1. Log in to the management console.
  2. On the console homepage, under Network, click Virtual Private Cloud.
  3. In the navigation pane on the left, click Security Group.
  4. On the Security Group page, click Create Security Group.
  5. In the Create Security Group area shown in Figure 1, set the parameters as prompted. Table 1 lists the parameters to be configured.
    Figure 1 Create Security Group
    Table 1 Parameter description



    Example Value


    Specifies the security group name. This parameter is mandatory.

    The security group name contains a maximum of 64 characters, which may consist of letters, digits, underscores (_), and hyphens (-). The name cannot contain spaces.


    You can change the security group name after a security group is created. It is recommended that you use different names for different security groups.



    Provides supplementary information about the security group. This parameter is optional.

    The security group description can contain a maximum of 128 characters and cannot contain angle brackets (<) or (>).


  6. Click OK.