Working with security groups
Security groups can be managed in either the Neutron CLI or the Horizon dashboard. Both methods offer a fairly comprehensive experience and are discussed in the following sections.
Managing security groups in the CLI
From within the Neutron command-line client, a number of commands can be used to manage security groups, including:
security-group-createsecurity-group-deletesecurity-group-listsecurity-group-rule-createsecurity-group-rule-deletesecurity-group-rule-listsecurity-group-rule-showsecurity-group-showsecurity-group-update
Creating security groups in the CLI
To create a security group within the CLI, use the Neutron security-group-create command as follows:
Usage: security-group-create [--tenant-id TENANT_ID] [--description DESCRIPTION] NAME
Note
By default, security groups in Neutron are prepopulated with two egress rules that allow all outbound traffic over IPv4 and IPv6. Ingress traffic from hosts outside of the associated group is not permitted...
