Groups

Groups are used to express access intent. A policy can allow one group to communicate with another group, and resources can be limited to selected groups.

The Groups view shows where each group is used: how many nodes belong to it, how many policies reference it, and how many resources use it.

Grouping guidance

Use groups for stable access models:

• Device role, such as workstations, servers, or gateways.
• Environment, such as production, staging, or home-lab.
• Responsibility, such as admins or contractors.

Avoid creating groups that duplicate every individual device. That makes policies harder to read and harder to review.

Default access

Netsody follows a default-deny model. Group membership alone does not grant access. Create policies that explicitly allow the communication you want.

See Policies.