Is there any way to use FwaaS without L3Agent?

asked 2017-03-22 11:38:02 -0500

KaBalint gravatar image

updated 2017-04-11 09:10:18 -0500

Hi There,

There is a project, where im fighting with the Devstack FwaaS. In this project I want to use Devstack FwaaS GUI dashboard, where the tenant gives the fw, fw_policy, fw_rules, as the fwaas scenario describe, then my program want to use these datas from the firewall_db and send them to an outside device using REST API (there is a python toolkit), so i don't want to enforce any firewall rule on the Openstack Router. The rules will be enforced on the underlay technology. Ofc i want to see exactly the same appearance of the Horizon, when i visit the Firewalls menu. (Name, Description, Policy, Associated Routers, Status, Admin State, Actions )

Do you have any idea, how i can do this, what the best solution is for this problem? Do i have to use any RPC client and server? Can i outnavigate the L3agent?

Actually I wrote the code, which will send the data to the outside device, but i dont know how i can integrate it into the devstack fwaas.

Regards, KaBalint

edit retag flag offensive close merge delete

Comments

Is Midonet use any L3Agent, or not? I think they are posting the fwaas rules to the controller with REST. Does Anyone have any idea?

KaBalint gravatar imageKaBalint ( 2017-04-11 09:05:22 -0500 )edit

Actually i managed that problem, i made a trigger, which call a python script, also pass the important args to the py aswell. So that py made all that i want.

KaBalint gravatar imageKaBalint ( 2017-05-19 04:04:54 -0500 )edit