A security group controls and limits the network access to your VPC or resource. The rules of a security group should be as fine-grained as possible. They should not allow wide-open internet access. We have found that the security group {AliCloudEcsSecurityGroup} enables access through the internet to unlimited IP addresses.