7.Configuring the Instance for HTTP Access

Your instance is now configured to allow public access only over SSH.

To enable access to the instance over other protocols, such as HTTP or HTTPS, you must open the required ports. In this tutorial, you'll create a security rule to enable HTTP access to your instance over port 80.

Creating a Security List

A security list is a set of instances that can communicate with each other across all protocols and ports. When you create a security rule, you specify a security list as a destination. This allows traffic from a specified source (such as the public Internet) to access all the instances that are part of the destination security list over a specified protocol and port.

To create a security list:

On the Oracle Compute Cloud Service web console, click the Network tab.

Click the Security Lists tab in the left pane, and then click Create Security List.
1. In the Create Security List dialog box, select or enter the following information, and then click Create.

Name: Enter an appropriate name. For the purpose of this tutorial, enter For-http-access.
Inbound Policy: Retain the default policy, Deny (Drop packets, no reply).
Outbound Policy: Retain the default policy, Permit (Allow packets).
Description: Enter a description.

Adding Your Instance to the Security List

On the Oracle Compute Cloud Service web console, click the Instances tab.
Go to the instance that you just created, and from the
menu, select View.
On the instance details page, click Add to Security List. Select the security list that you just created, and then click Attach.
Your instance is added to the For-http-access security list.

Creating a Security Rule

When you create a security list, the instances in the security list are isolated from hosts outside the security list. You can use security rules to override the default access settings of security lists. Each security rule defines a source, a destination, and a protocol-port combination over which communication is allowed.

In this tutorial, you'll set up a security rule to permit HTTP requests from hosts on the public Internet to port 80 of the instances in the For-http-access security list.

To create a security rule:

On the Oracle Compute Cloud Service web console, click the Network tab, and then click the Security Rules tab in the left pane.
Click Create Security Rule.
In the Create Security Rule dialog box, select or enter the following information, and then click Create.

Name: Enter an appropriate name. For the purpose of this tutorial, enter Allow-http-access.
Status: Retain the default, Enabled.
Security Application: Select http.
1. Note: Many of the commonly-used protocol and port combinations are provided as predefined security applications in Oracle Compute Cloud Service. However, if you wish to specify a particular protocol-port mapping that is not predefined, you can create the required security application in the Security Applications tab in the left pane.
Source: From the Security IP Lists list, select public-internet.
Destination: From the Destination list, select the security list that you created earlier, For-http-access.
Description: Enter a description.

Repeat these steps if you want to create security rules to enable access to instances using other protocols and ports, or if you want to specify a different source or destination.

Page updated

Google Sites

Report abuse