Edit a security group rule

Describes how to edit a security group rule in the KSV web console.

This topic describes how to edit a security group rule in the KubeSphere Virtualization (KSV) web console.

User admin can edit all security group rules in your cluster. Project administrators and operators can edit the security group rules created on their own, and project viewers cannot edit security group rules.

Prerequisites

A security group is created, and a rule is added to the security group.

Procedure

Log in to the KSV web console.
In the top navigation bar, click Virtual Resources to go to the management page of virtual resources.
In the left-side navigation pane, click Security Groups.
On the Security Groups page, click the name of a security group to view its details.
On the Inbound Traffic or Outbound Traffic tab, find the security group rule that you want to edit, click , and then select Edit from the drop-down list.

In the dialog box that appears, modify parameters for the security group rule.

Parameter	Description
Name	The name of the security group rule. The name can contain only lowercase letters, digits, and hyphens (-), and must start and end with a lowercase letter or a digit. The name can contain up to 16 characters in length.
Direction	The direction of the traffic that the security group rule controls. Outbound Traffic: controls the outbound traffic of the resources associated with the security group. By default, the outbound traffic is allowed. Inbound Traffic: controls the inbound traffic of the resources associated with the security group. By default, the inbound traffic is denied unless it matches a rule that allows the traffic.
Protocol	The protocol that corresponds to the security group rule. Valid values: ALL: supports all protocol types. TCP UDP ICMP
Source Port	Sets the source port for a preset security group rule.
Destination Port	Sets the destination port for a preset security group rule.
Type	The object on which the security group rule takes effect. IP Address: the IP address range in which the security group rule takes effect. Security Group：the security group in which the security group rule takes effect.
Destination IP Address	The IP address on which the security group rule takes effect when Direction is set to Outbound Traffic.
Source IP Address	The IP address on which the security group rule takes effect when Direction is set to Inbound Traffic.

Name

The name of the security group rule.

The name can contain only lowercase letters, digits, and hyphens (-), and must start and end with a lowercase letter or a digit. The name can contain up to 16 characters in length.

Direction

The direction of the traffic that the security group rule controls.

Outbound Traffic: controls the outbound traffic of the resources associated with the security group. By default, the outbound traffic is allowed.
Inbound Traffic: controls the inbound traffic of the resources associated with the security group. By default, the inbound traffic is denied unless it matches a rule that allows the traffic.

Protocol

The protocol that corresponds to the security group rule. Valid values:

ALL: supports all protocol types.
TCP
UDP
ICMP

Source Port

Sets the source port for a preset security group rule.

Destination Port

Sets the destination port for a preset security group rule.

Type

The object on which the security group rule takes effect.

IP Address: the IP address range in which the security group rule takes effect.
Security Group：the security group in which the security group rule takes effect.

Destination IP Address

The IP address on which the security group rule takes effect when Direction is set to Outbound Traffic.

Source IP Address

The IP address on which the security group rule takes effect when Direction is set to Inbound Traffic.

Click OK.