Configuring security group settings - BlueCat Address Manager - 9.4.0

BlueCat AWS Virtual Appliances

Locale
English (United States)
Product name
BlueCat Address Manager
Version
9.4.0

Define firewall rules that control the traffic for your instance.

Add rules to allow specific traffic to reach your instance as needed. BlueCat recommends the following minimum set of firewall rules for Address Manager and DNS/DHCP Server on AWS:

Table.
BAM BDDS
  • HTTP port 80
  • HTTPS port 443
  • SSH port 22
  • Custom UDP Rule with port number 10045 for notifications
  • SSH port 22
  • Custom UDP Rule with port number 123 for NTP (inbound only) and 161 for SNMP (inbound only)
  • Custom TCP Rule with port number 10042 for secure management and connectivity between DNS/DHCP Servers and Address Manager
  • Custom TCP and UDP Rule with port number 53 for DNS
  • Custom UDP Rule with port number 67 for DHCP
    Note: UDP port 67 is only required for running DHCP in VPC with remote clients.

To define security group settings:

  1. From the Assign security group section, select Create a new security group.
    Note: If you already have defined a security group with these rules, you can choose the Select an existing security group option and select the security group from the list.
  2. Enter a name for the security group that you are creating in the Security group name field.
  3. Enter a descriptive name for the security group that you are creating in the Description field.
  4. Click Add Rule.
  5. Click the drop-down menu and select the rules to add.
    Note: For more information about BlueCat appliance service ports, refer to Network requirements in the Address Manager Administration Guide.
  6. Click Review and Launch to review all your settings and configurations before launching the instance.