IBM Cloud Orchestrator, Version 2.5.0.8

[Optional] Configuring security groups

You can configure security groups to allow ssh and ping commands to access virtual machines that are deployed in your OpenStack environment. You can also configure security groups to enable RDP ports for Windows virtual machine instances.

About this task

This task is optional. Consider whether you want to allow such access. For more information, see the documentation for your chosen OpenStack product.
Note: If you a working in a multi-domain environment, you must run this procedure for each domain in which you want to access the deployed virtual machines. Specify the domain in the RC file used in the step 2 of the procedure.

Procedure

  1. Log on to the OpenStack Controller as a root user.
  2. Set the environment to the correct OpenStack values. Use the new RC file that you created by following the procedure in Creating a new RC file for Keystone V3. Run the following command: 
    source <name_of_your_RC_file>
  3. If you want to configure security groups to allow access by ssh and ping commands, run the following commands: 
    nova secgroup-add-rule default icmp -1 -1 0.0.0.0/0
nova secgroup-add-rule default tcp 22 22 0.0.0.0/0
  4. If you want to enable RDP ports for Windows virtual machine instances, run the following commands: 
    nova secgroup-add-rule default tcp 3389 3389 0.0.0.0/0
nova secgroup-add-rule default udp 3389 3389 0.0.0.0/0
Parent topic: Configuring an OpenStack Kilo distribution