Access & Security components of Instance

You need to add rules to a security group for Ping or SSH to instance before launching Instance.

*Process

1. Add rules to the security group

This process allow SSH and ICMP(Ping) access to an instance.
The rules in security group apply to the all instances in the project and they must be put in all projects except in the case of preventing access using SSH and ICMP.

- When you add rules please specify the protocol being used for destination port or source port.

In the IXcloud console management, click button after Project >Compute > Access& Security.

To allow SSH access, click button.

In the ‘Add rule’ dialog box, do the following:

Rule: Select SSH from the list.

Remote: Select CIDR to specify the allowed range of security.

CIDR: Type 0.0.0.0/0.

- IP address to CIDR will be blocked to accept the request of specific range of IP address.

Click button. As shown below, a new rule has been added.
From now on, Instance receives requests of all IP address to open SSH 22 port.

To add an ICMP rule, click again.

In the ‘Add Rule’ dialog box, do the following:

Rule: Select ‘All ICMP’ from the list.

Direction: Select ‘ ingress’.

Remote: Select CIDR to specify the allowed range of security.

CIDR: Type 0.0.0.0/0.

Click button. As you can see, new rules has been added; then, Instance receive all ICMP packets.

2. Create a key pair

IXcloud utilizes a remote access with a key pair. To prevent any risks for managing instance, you need at least one key pair for each project.

If not, you might have some problems when you manage instances.

On the Key Pair tab Click button after Project > Compute > Access & Security.

In the ‘Create Key Pair’ dialog box, type the name of key pair and click .

The key pair should download automatically. If not use the link below.

3. Import key pair

You need at least one key for each project

When you create a key pair by a tool, please import it from open stack. Key pair can be used for other instances in the project.

On the Key Pair tab after Project > Compute >Access & Security, click button.

In the ‘Import Key Pair’ dialog box, ① Specify the key pair name and ② Copy a public key, then click button.

This will be saved as a ‘.pem file’.

To modify permission to user only, run the following command:

$ chmod 0600 yourPrivateKey.pem

- In case of opening a pem file, using a dash board on Widow OS, it uses PuTTygen and be saved as ‘.ppk’ format.

To make SSH key pair you already known, run a ssh-add command like this:

$ ssh-add yourPrivateKey.pem

4. Allocate Floating IP to an instance

When an instance is created, static IP is allocated automatically to the network, to which instance is allocated.

IP address is permanently connected to an Instance until the instance is shut down.

However, you can connect to the instance using a floating IP address besides a static IP address.

You can change the connection of floating IP, regardless of instance’s state.

Note: One floating IP is offered free for each instance.

On Floating IP tab after Project > Compute > Access & Security, click button.

In the ‘Allocate Floating IP’ dialog box, select a floating IP from a given floating IP pool, then click button.

On the Floating IP tab in the ‘Access & Security’ page, click for the floating IP to an instance.
In the ‘Manage Floating IP Association’ dialog box, check the following option as shown below and Select the port to be associated, then click . button.

IP Address: It has been filled automatically. You can add a new IP address with button.

Port to be associated: You can choose the port.

Floating IP address, 192.168.0.6, has been allocated to the project.

If you want to release the floating IP, click on the floating IP tab in the Access & Security page.
If you want release IP address of address pool, click button that shows additional option and choose ‘release floating IP’.

KINX

21F, Gangnam Building, 396, Seocho-daero, Seocho-gu, Seoul, KOREA

Service Inquiry : 02-526-0900(Press 1)

Technical Inquiry : 02-526-0900(Press 2)