diff --git a/src/corelib/Networking/v2/Layer3/NetworkingService_Layer3_Extensions.cs b/src/corelib/Networking/v2/Layer3/NetworkingService_Layer3_Extensions.cs
index 4cff952a9..0ae60f16d 100644
--- a/src/corelib/Networking/v2/Layer3/NetworkingService_Layer3_Extensions.cs
+++ b/src/corelib/Networking/v2/Layer3/NetworkingService_Layer3_Extensions.cs
@@ -6,6 +6,8 @@
 using OpenStack.Networking.v2.Serialization;
 using OpenStack.Serialization;
 using OpenStack.Synchronous.Extensions;
+using Flurl.Extensions;
+using Flurl.Http;
 
 namespace OpenStack.Networking.v2.Layer3
 {
@@ -102,6 +104,18 @@ public static class NetworkingService_Layer3_Extensions
             return service._networkingApiBuilder.DeleteFloatingIPAsync(floatingIPId, cancellationToken);
         }
         #endregion
+
+        #region Security Groups
+        /// <inheritdoc cref="NetworkingApiBuilder.ListSecurityGroupAsync(CancellationToken)" />
+        public static async Task<IEnumerable<SecurityGroup>> ListSecurityGroupAsync(this NetworkingService service, CancellationToken cancellationToken = default(CancellationToken))
+        {
+            return await service._networkingApiBuilder
+                .ListSecurityGroupAsync(cancellationToken)
+                .SendAsync()
+                .ReceiveJson<NetSecurityGroupCollection>()
+                .ConfigureAwait(false);
+        }
+        #endregion
     }
 }
 
@@ -200,5 +214,14 @@ public static void DeleteFloatingIP(this NetworkingService service, Identifier f
             service._networkingApiBuilder.DeleteFloatingIPAsync(floatingIPId).ForceSynchronous();
         }
         #endregion
+
+        #region Security Group
+        /// <inheritdoc cref="NetworkingService_Layer3_Extensions.ListSecurityGroupAsync" />
+        public static  IEnumerable<SecurityGroup> ListSecurityGroup (this NetworkingService service)
+        {
+            return service._networkingApiBuilder.ListSecurityGroupAsync().SendAsync().ReceiveJson<NetSecurityGroupCollection>().ForceSynchronous();
+        }
+        #endregion
+
     }
 }
diff --git a/src/corelib/Networking/v2/Layer3/SecurityGroup.cs b/src/corelib/Networking/v2/Layer3/SecurityGroup.cs
new file mode 100644
index 000000000..bb42aeb66
--- /dev/null
+++ b/src/corelib/Networking/v2/Layer3/SecurityGroup.cs
@@ -0,0 +1,48 @@
+﻿using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Text;
+using System.Threading.Tasks;
+using Newtonsoft.Json;
+using OpenStack.Networking.v2;
+using OpenStack.Serialization;
+
+namespace OpenStack.Networking.v2.Layer3
+{
+    /// <summary>
+    ///Regpresents the security group of the <see cref="NetworkingService"/> 
+    /// </summary>
+    [JsonConverterWithConstructor(typeof(RootWrapperConverter), "securitygroup")]
+    public class SecurityGroup
+    {
+        /// <summary>
+        ///the security group description
+        /// </summary>
+        [JsonProperty("description")]
+        public string Description;
+
+        /// <summary>
+        ///the UUID of security group
+        /// </summary>
+        [JsonProperty("id")]
+        public Identifier Id;
+
+        /// <summary>
+        /// the security group name
+        /// </summary>
+        [JsonProperty("name")]
+        public string Name;
+
+        /// <summary>
+        ///A list of <see cref="SecurityGroup"/> objects.
+        /// </summary>
+        [JsonProperty("security_group_rules")]
+        public IList<SecurityGroupRule> SecurityGroupRules;
+
+        /// <summary>
+        ///The UUId of tenant who owns the scurity group
+        /// </summary>
+        [JsonProperty("tenant_id")]
+        public string TenantId;
+    }
+}
diff --git a/src/corelib/Networking/v2/Layer3/SecurityGroupRule.cs b/src/corelib/Networking/v2/Layer3/SecurityGroupRule.cs
new file mode 100644
index 000000000..d2a1f5baa
--- /dev/null
+++ b/src/corelib/Networking/v2/Layer3/SecurityGroupRule.cs
@@ -0,0 +1,83 @@
+﻿using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Text;
+using System.Threading.Tasks;
+using Newtonsoft.Json;
+namespace OpenStack.Networking.v2.Layer3
+{
+    /// <summary>
+    /// 
+    /// </summary>
+    public class SecurityGroupRule
+    {
+        /// <summary>
+        ///ngress or egress: the direction in which the security group rule is applied.
+        ///For a compute instance, an ingress security group rule is applied to incoming (ingress) traffic for that instance. 
+        ///An egress rule is applied to traffic leaving the instance.
+        /// </summary>
+        [JsonProperty("direction")]
+        public string Direction;
+
+        /// <summary>
+        ///Must be IPv4 or IPv6, and addresses represented in CIDR must match the ingress or egress rules. 
+        /// </summary>
+        [JsonProperty("ethertype")]
+        public string Ethertype;
+
+        /// <summary>
+        /// The UUID of the security group rule.
+        /// </summary>
+        [JsonProperty("id")]
+        public Identifier Id;
+
+        /// <summary>
+        ///The maximum port number in the range that is matched by the security group rule. 
+        ///The port_range_min attribute constrains the port_range_max attribute.
+        ///If the protocol is ICMP, this value must be an ICMP type. 
+        /// </summary>
+        [JsonProperty("port_range_max")]
+        public int PortRangeMax;
+
+        ///<summary>
+        ///The minimum port number in the range that is matched by the security group rule.
+        ///If the protocol is TCP or UDP, this value must be less than or equal to the port_range_max attribute value.
+        ///If the protocol is ICMP, this value must be an ICMP type.
+        /// </summary>
+        [JsonProperty("port_range_min")]
+        public int PortRangeMin;
+
+        /// <summary>
+        ///The protocol that is matched by the security group rule. Value is null, icmp, icmpv6, tcp, or udp. 
+        /// </summary>
+        [JsonProperty("protocol")]
+        public string Protocol;
+
+        ///<summary>
+        ///The remote group UUID to associate with this security group rule.
+        ///You can specify either the remote_group_id or remote_ip_prefix attribute in the request body. 
+        /// </summary>
+        [JsonProperty("remote_group_id")]
+        public string RemoteGroupId;
+
+        /// <summary>
+        ///The remote IP prefix to associate with this security group rule.
+        ///You can specify either the remote_group_id or remote_ip_prefix attribute in the request body.
+        ///This attribute value matches the IP prefix as the source IP address of the IP packet. 
+        /// </summary>
+        [JsonProperty("remote_ip_prefix")]
+        public string RemoteIpPrefix;
+
+        /// <summary>
+        ///The UUId of security group 
+        /// </summary>
+        [JsonProperty("security_group_id")]
+        public string SecurityGroupId;
+
+        /// <summary>
+        /// The UUID of the tenant who owns the security group rule. Only administrative users can specify a tenant UUID other than their own.
+        /// </summary>
+        [JsonProperty("tenant_id")]
+        public string TenantId;
+    }
+}
diff --git a/src/corelib/Networking/v2/NetworkingApiBuilder.cs b/src/corelib/Networking/v2/NetworkingApiBuilder.cs
index cc86c88d0..1610c7ca0 100644
--- a/src/corelib/Networking/v2/NetworkingApiBuilder.cs
+++ b/src/corelib/Networking/v2/NetworkingApiBuilder.cs
@@ -667,6 +667,26 @@ public NetworkingApiBuilder(IServiceType serviceType, IAuthenticationProvider au
         }
         #endregion
 
+        #region SecurityGroup
+        /// <summary>
+        /// Lists all networks security groups associated with the account.
+        /// </summary>
+        /// <param name="cancellationToken">A cancellation token that can be used by other objects or threads to receive notice of cancellation.</param>
+        /// <returns>
+        /// A collection of network resources associated with the account.
+        /// </returns>
+        public async Task<PreparedRequest> ListSecurityGroupAsync(CancellationToken cancellationToken = default(CancellationToken))
+        {
+            Url endpoint = await Endpoint.GetEndpoint(cancellationToken).ConfigureAwait(false);
+
+            return endpoint
+                .AppendPathSegments("security-groups")
+                .Authenticate(AuthenticationProvider)
+                .PrepareGet(cancellationToken);
+        }
+
+        #endregion
+
         #region Floating IPs
         /// <summary>
         /// Shows details for a server group.
diff --git a/src/corelib/Networking/v2/Serialization/NetSecurityGroupCollection.cs b/src/corelib/Networking/v2/Serialization/NetSecurityGroupCollection.cs
new file mode 100644
index 000000000..8243a6d10
--- /dev/null
+++ b/src/corelib/Networking/v2/Serialization/NetSecurityGroupCollection.cs
@@ -0,0 +1,37 @@
+﻿using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Text;
+using System.Threading.Tasks;
+using OpenStack.Serialization;
+using OpenStack.Networking.v2.Layer3;
+
+namespace OpenStack.Networking.v2.Serialization
+{
+    /// <summary>
+    /// Represents a collection of security groups resources returned by the <see cref="NetworkingService"/>.
+    /// <para>Intended for custom implementations and stubbing responses in unit tests.</para>
+    /// </summary>
+    [JsonConverterWithConstructor(typeof(RootWrapperConverter), "security_groups")]
+     public class NetSecurityGroupCollection : List<SecurityGroup>
+    {
+
+        /// <summary>
+        ///Initializes a new instance of the<see cref="SecurityGroup"/> class.
+        /// </summary>
+        public NetSecurityGroupCollection()
+        {
+
+        }
+
+        /// <summary>
+        ///Initializes a new instance of the<see cref="SecurityGroup"/> class.
+        /// </summary>
+        /// <param name="securityGroups"></param>
+        public NetSecurityGroupCollection(IEnumerable<SecurityGroup> securityGroups) : base(securityGroups)
+        {
+
+        }
+        
+    }
+}
diff --git a/src/corelib/OpenStack.csproj b/src/corelib/OpenStack.csproj
index 620fd589b..6078ced5a 100644
--- a/src/corelib/OpenStack.csproj
+++ b/src/corelib/OpenStack.csproj
@@ -194,6 +194,8 @@
     <Compile Include="Images\v2\Serialization\ImageStatus.cs" />
     <Compile Include="Networking\IPVersion.cs" />
     <Compile Include="Networking\NamespaceDoc.cs" />
+    <Compile Include="Networking\v2\Layer3\SecurityGroup.cs" />
+    <Compile Include="Networking\v2\Layer3\SecurityGroupRule.cs" />
     <Compile Include="Networking\v2\AllowedAddress.cs" />
     <Compile Include="Networking\v2\AllocationPool.cs" />
     <Compile Include="Networking\v2\PortListOptions.cs" />
@@ -234,6 +236,7 @@
     <Compile Include="Networking\v2\Serialization\NetworkDefinitionCollection.cs" />
     <Compile Include="Networking\v2\Serialization\PortCollection.cs" />
     <Compile Include="Networking\v2\Serialization\PortDefinitionCollection.cs" />
+    <Compile Include="Networking\v2\Serialization\NetSecurityGroupCollection.cs" />
     <Compile Include="Networking\v2\Serialization\SubnetCollection.cs" />
     <Compile Include="Networking\v2\Serialization\SubnetDefinitionCollection.cs" />
     <Compile Include="Networking\v2\Subnet.cs" />
diff --git a/src/testing/unit/Networking/v2/Layer3/Layer3Tests.cs b/src/testing/unit/Networking/v2/Layer3/Layer3Tests.cs
index fa8141f17..31d91179b 100644
--- a/src/testing/unit/Networking/v2/Layer3/Layer3Tests.cs
+++ b/src/testing/unit/Networking/v2/Layer3/Layer3Tests.cs
@@ -313,5 +313,33 @@ public void DeleteFloatingIP(HttpStatusCode responseCode)
         }
         #endregion
 
+        #region  Security Groups
+        [Fact]
+        public void ListSecurityGroupAsync()
+        {
+            using (var httpTest = new HttpTest())
+            {
+                Identifier securityGroupId = Guid.NewGuid();
+                Identifier securityGroupRuleId = Guid.NewGuid();
+                SecurityGroupRule rule = new SecurityGroupRule { Id = securityGroupRuleId };
+                List<SecurityGroupRule> rules = new List<SecurityGroupRule> { rule };
+
+                httpTest.RespondWithJson(new NetSecurityGroupCollection
+                {
+                    new SecurityGroup { Id = securityGroupId, SecurityGroupRules = rules }
+                });
+
+                var results = _networking.ListSecurityGroup();
+
+                httpTest.ShouldHaveCalled("*/security-groups");
+                Assert.Equal(1, results.Count());
+                var result = results.First();
+                var resultRule = result.SecurityGroupRules.First();
+                Assert.Equal(securityGroupId, result.Id);
+                Assert.Equal(rule.Id, resultRule.Id);
+            }
+        }
+        #endregion
+
     }
 }
