Security Groups

The Security GroupClosed A set of access control rules that acts as a virtual firewall for your virtual machine instances to control incoming and outgoing traffic. section shows the security groups for all your CloudGuard-managed environments. If use CloudGuard to fully manage your environments, then you can actively manage your security groups from CloudGuard: configure new security groups, change them, and apply them to your environments.

In addition, you can review your security groups for all your cloud accounts, on all platforms, in one place. For CloudGuard-managed accounts, you can also apply changes in one place to all accounts. When you configure and apply changes in one place, you make sure that your security groups are harmonious and comprehensive across your cloud presence.

When you make changes in environments through the CloudGuard portal, you decrease the chance of accidental or non-approved changes to your security groups. In addition, if unwanted changes are accidentally made through the cloud account, CloudGuard detects this activity. If CloudGuard fully manages the security groups, it automatically rolls them back to the earlier authorized settings made on CloudGuard and notifies you about it.

Use Cases

Typical use cases to illustrate how you can control your Security Groups from one central location:

  • Search for Security Groups - To quickly search for specific security policies across all of your cloud presence, see Viewing your Security Groups.

  • Review security posture - To analyze your security position effectively by reviewing all your policies in one view, see Continuous Posture.

  • Apply equal changes - If you expand or change your cloud presence, or add more services or regions, you can change the security policies harmoniously for all regions from one portal - see Configuring CloudGuard Policies.

  • React to anomalous behavior - If changes are made to one of your cloud accounts, accidentally or maliciously, you immediately receive a notification, which allows you to do corrective actions - see Notifications.

Actions

To open the primary Security Group page, navigate to Network Security > Security Groups.

The primary page shows a list of all your managed security groups, which includes all your CloudGuard-managed environments on all cloud platforms. Use the search box or filter options to filter the list.

You can export your security groups to a CSV file.

To create a security group report:

  1. Navigate to Network Security > Security Groups to show the list of security groups.

  2. Filter the list to show only applicable security groups.

  3. On the top right, click Export and select one of these options:

    • Export to CSV - Filtered Security Groups - Download the file with the applied filter criteria.

    • Export to CSV - All Security Groups - Download the file with all security groups in your account.

    • By OU\Environment - Detailed - Select a platform and environment or Organizational Unit, and receive an email. The email contains a link to the protected assets page. From this page, you can save the downloaded file to your computer.

More Links: