Improper configuration of security group rules can cause serious security risks. You can modify improper rules in a security group to ensure the network security of instances within the security group.

Prerequisites

A security group is created and security group rules are added. For more information, see Create a security group and Add security group rules.

Background information

Security group rules that do not limit traffic on certain points may be exposed to serious security risks. You can modify security group rules to ensure the network security of instances.

Procedure

  1. Log on to the ECS console.
  2. In the left-side navigation pane, choose Network & Security > Security Groups.
  3. In the top navigation bar, select a region.
  4. On the Security Groups page, find the target security group and click Add Rules in the Actions column.
  5. Select a direction of security group rules.
    • If the security group is of the VPC type, you can select Inbound or Outbound.
    • If the security group is of the classic network type, you can select Internal Network Ingress, Internal Network Egress, Internet Ingress, or Internet Egress.
  6. Find the target security group rule and click Modify in the Actions column.