| *** mhen_ is now known as mhen | 02:41 | |
| Sebastian_ | Which Security Group Rules should be used for only allowing a regular web browser to surf the Internet? Sorry if it is a stupid question... | 09:44 |
|---|---|---|
| Sebastian_ | I am new to this community, can people ask questions here? | 14:46 |
| frickler | Sebastian_: yes, but the channel is pretty quiet, so getting an answer is not so easy | 15:08 |
| Sebastian_ | Haha, I see. Thank you for the answer frickler. I'll try somewhere else first then :) | 15:26 |
| jrosser | Sebastian_: is it possible to be a little more specific about your security group question? | 15:26 |
| jrosser | security groups apply to VM which are generally servers, and web browsers are pretty much clients | 15:27 |
| jrosser | so i'm not totally sure what the context is | 15:27 |
| Sebastian_ | Oh, yes. I have a new compute instance (Ubuntu VM) in OpenStack. And I just want to run a bot there which browses the internet through and automated Chromium browser. But it seems like it doesn't have access to the Internet by default. So I think I need to change the network rules under "Security Groups" in the interface | 15:28 |
| Sebastian_ | I am new to all of this, so please let me know if my question makes no sense | 15:29 |
| tkajinam | Sebastian_, security group usually affects only incoming traffic while it does not affect outgoing traffic (I think jrosser meant the same). Unless you have very customized security rules I'd check different points | 15:31 |
| frickler | the default security group would allow all outgoing connections, are you using a custom security group? | 15:31 |
| tkajinam | s/security rules/security group rules/ | 15:32 |
| tkajinam | yeah | 15:32 |
| jrosser | do you have any kind of external connectivity, like ping or ssh from the VM? | 15:33 |
| Sebastian_ | Oh, thank you very much frickler and tkajinam. I guess there is something else wrong then, because the security group seemed fine to me. ping didn't work either. SSH I had to turn on from security group before it worked. | 15:33 |
| tkajinam | Sebastian_, I'd suggest you check whether the VM is reachable to the external networks. | 15:33 |
| tkajinam | usually VMs are connected to a tenant network which is private within the cluster and you have to connect your private network to the external network by a router | 15:34 |
| tkajinam | though this heavily depends on the network architecture of the OpenStack cluster you are using. | 15:34 |
| Sebastian_ | OK, in that case... I will try to look there then and see if I can solve it. Thanks for the guidance! | 15:36 |
| tkajinam | network resources in OpenStack(which has only low level resources such as networks/subnets/routers) is different from ones from AWS (which has the core "VPC" concept taking care of routing between subnets, internet connectibity, etc). | 15:45 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!