Ask Your Question

Openstack security virtual appliance

asked 2013-09-30 08:25:49 -0500

sngirame gravatar image

What approach openstack going to take so as to enable security virtual appliance capability in openstack cloud which will help in building cloud aware security/protection technologies. In short, what is openstack's answer to technologies like vmware vshield?

edit retag flag offensive close merge delete


Experts....your comments please

sngirame gravatar imagesngirame ( 2013-10-03 04:05:45 -0500 )edit

You can add a perimeter firewall appliance to take care of this like PFSENSE

vblando gravatar imagevblando ( 2015-04-28 04:53:55 -0500 )edit

1 answer

Sort by ยป oldest newest most voted

answered 2018-11-21 05:00:12 -0500

rduncan-t gravatar image

as per vblando's comment it's common practice to have an enterprise firewall at the network edge, vshield is just another example of any proprietary network service and does indeed integrate with Neutron - the reference architecture of Neutron for network security is iptables - but Neutron can be configured with drivers and plugins so it can configure network functions on various different devices, for example LBaaS, VPNaaS, FWaaS, SDN, NFV - the vendors write and maintain their own plugins compatible with OpenStacks API's - many are available for public cloud also, from vendors like Fortinet, F5, Mellanox, Cisco, Juniper, Checkpoint etc. So, as OpenStack is free software the reference architecture is also composed of free software including OpenvSwitch, Iptables, Octavia, haproxy, Designate, bind9 etc.

Third Parry drivers

or ask your vendor about OpenStack support.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2013-09-30 08:25:49 -0500

Seen: 295 times

Last updated: Nov 21 '18