Hi Thiago,
Current, FWaaS only manages what's allowed in and out on router ports.
Security profiles are applied to instances ports directly.
FYI: The current FWaaS API is somewhat experimental and policy applies
globally to all the routers a tenant owns (i.e: no zone concept yet).
Aaron
On Mon
Cool! Thanks!!
On 28 October 2013 19:16, Aaron Rosen wrote:
> Hi Thiago,
>
> Current, FWaaS only manages what's allowed in and out on router ports.
> Security profiles are applied to instances ports directly.
>
> FYI: The current FWaaS API is somewhat experimental and policy applies
> globally
Guys,
I'm trying to figure out the main differences between FWaaS and "Security
Groups".
* Does it complement each other? Or is FWaaS a "Security Groups"
replacement...?
* Can FWaaS manage the "Tenant Namespace Router NAT Table"?
* Does FWaaS manage the same iptables/ip6tables tables at L3 Nam
