Security groups
Security groups let you define firewall rules once and apply them to a set of servers. Manage them under Workspace settings > Security > Security groups.
Note: Security groups are an Enterprise plan feature and are managed by superusers. Firewall rules apply to Linux servers.
What a security group does
A security group holds a set of firewall rules and a list of assigned servers. When you sync the group, its rules are applied to every assigned server, giving you consistent network access control across a fleet.
Tabs
A security group has four tabs:
- Firewall rules — define the rules. Each rule sets a protocol, port (a specific port, a range, or all), source and destination (CIDR), an action (Accept, Drop, or Reject), and a priority that determines the order in which rules are evaluated. Sync applies the rules to assigned servers.
- Assigned servers — choose which servers the group applies to. Each server shows an apply status (for example, pending, active, failed, or rolled back).
- Snapshots and rollbacks — snapshots capture a group’s rule set so you can preview and roll back to a previous configuration.
- Settings — edit the group’s name and description, or delete the group.