Managing Access Rules for a Resource in a Cloud Stack

Some Oracle Cloud resources use access rules to control access to the components that make up the resource, including access by other Oracle Cloud resources and by external clients. Oracle Cloud typically creates default access rules for a resource when it is provisioned, but you can also use Oracle Cloud Stack to create custom rules on existing resources.

Use the web console to add an access rule to a resource in a cloud stack.

1. Sign in to the Oracle Cloud Stack console and navigate to the Stacks page.
2. Click the stack’s name.
3. Click the menu to the right of the resource you want to update.
4. Select Access Rules.

   Note:

   Some cloud resources, such as Oracle Cloud Infrastructure Object Storage Classic containers, are not associated with access rules.
5. Click Create Rule.
6. Enter a name for the access rule in the Rule Name field.

   Enter an optional description of the access rule in the Description field.

7. Select a Source for the rule. The available options will vary for each cloud resource, depending on its type and configuration.

   For example, PUBLIC-INTERNET is any host on the internet.

   Choose <custom> to provide a custom list of IP addresses from which traffic should be allowed. In the field that displays below, enter a comma-separated list of the subnets (in CIDR format, such as 192.0.2.1/24) or IPv4 addresses for which you want to permit access.

8. Select a Destination for the rule. The available options will vary for each cloud resource, depending on its type and configuration.
9. Enter the port or port range through which the source will access the destination in the Destination Port(s) field.
10. For Protocol, select TCP or UDP.
11. Click Create.
12. To return to the Stacks page, click Stacks in the bread crumb trail at the top of the page.