Hi, On Mon, Nov 2, 2015 at 11:25 AM, Somanchi Trinath < trinath.soman...@freescale.com> wrote:
> Hi – > > > > Based on this “Assuming that, it will not be routing traffic, just > filtering, and that we will be using virtual routers of Openstack” > > > > As I understand from the email, you might be comfortable to configure the > HW-FW using the ReST API. So you can write a proxy driver and connect the > HW-FW in the setup (which you have tested to make it ready to use). The > proxy driver written helps to Configure the HW-FW and the HW-FW filters the > traffic. > > > > Having said that, I assume that the HW-FW has some intelligence to process > the requests from proxy driver and update the FW configuration. > > > To be sure, calling the REST API at https://github.com/openstack/neutron-fwaas/blob/master/neutron_fwaas/services/firewall/drivers/linux/iptables_fwaas.py#L62 for ex to create a firewall is what you are talking about. Instead of iptables, a new driver will be written to handle CRUD operations. To distinguish the tenant networks, i will be using vlan or vxlan ids while entering firewall rules, i think. > *HW-FW – Hardware Firewall. > > > > Hope this helps. > > > > - > > Trinath > > > Did I understand you right, about the proxy driver?
__________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
