From 13101fe6d5450be0e4f80d76b9b18b9b5eeb1d91 Mon Sep 17 00:00:00 2001 From: Harikrishna Patnala Date: Mon, 2 Mar 2026 11:09:18 +0530 Subject: [PATCH] Add section about Firewall rules on a public IP address in a VPC --- .../virtual_private_cloud_config.rst | 23 +++++++++++++++++++ 1 file changed, 23 insertions(+) diff --git a/source/adminguide/networking/virtual_private_cloud_config.rst b/source/adminguide/networking/virtual_private_cloud_config.rst index 219f4ea7f4..bce5d7784f 100644 --- a/source/adminguide/networking/virtual_private_cloud_config.rst +++ b/source/adminguide/networking/virtual_private_cloud_config.rst @@ -940,6 +940,29 @@ function only if they are defined on the default network. #. Select the tier and the destination Instance, then click Apply. +.. _adding-firewall-rules-on-a-public-IP-address-in-a-VPC: + +Adding Firewall rules on a public IP address in a VPC +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +In a VPC, once the public IP address is associated with a tier, you can +create firewall rules for the public IP address. Firewall rules are created +to allow traffic from the Internet to a tier. For example, you can create a +firewall rule to allow HTTP traffic from the Internet to the Web tier. + +#. Log in to the CloudStack UI. +#. In the left navigation, choose Network. +#. In the Select view, select VPC. +#. Enter Public IP addresses section and click on the + Public IP Address to which you want to add firewall rules. +#. Click the Firewall Rules tab, which will appear only if the public IP address is associated with a tier. +#. Click Add Firewall Rule and specify the following: + - *Source CIDR* - The CIDR that defines the source of the traffic. + - *Protocol* - The protocol that defines the type of traffic. + - *Start Port* and *End Port* - The port range that defines the destination of the traffic. + If you are opening a single port, use the same number in both fields. + + Adding Load Balancing Rules on a VPC ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~