Ask Your Question

Revision history [back]

Hi Akshik,

I have the same question. Also an additional question I have is: is the Firewall capability limited by the FWaaS API definition? So far I see the following "neutron firewall-rule-create" command, which only allows simple 5-tuple filtering kind of firewall capability. I wonder if vArmour-Firewall can provide more capabilities (e.g. stateful firewall filtering, URL/content filtering, IDS/IPS, anti-malware, etc.) within the framework of OpenStack FWaaS?

Thanks, Ian

neutron firewall-rule-create --protocol tcp --destination-port 80 --action allow Created a new firewall_rule: +------------------------+--------------------------------------+ | Field | Value | +------------------------+--------------------------------------+ | action | allow | | description | | | destination_ip_address | | | destination_port | 80 | | enabled | True | | firewall_policy_id | | | id | 1283a548-9ca8-4a7b-a187-fc21c7fefe8e | | ip_version | 4 | | name | | | position | | | protocol | tcp | | shared | False | | source_ip_address | | | source_port | | | tenant_id | baaaf4da44874e3f82ff93beba64117e | +------------------------+--------------------------------------+