[openstack-dev] [neutron][fwaas]some architectural advice on fwaas driver writing

Oğuz Yarımtepe oguzyarimtepe at gmail.com
Mon Nov 2 12:07:21 UTC 2015


On Mon, Nov 2, 2015 at 1:36 PM, Somanchi Trinath <
trinath.somanchi at freescale.com> wrote:

> Hi-
>
>
>

Hi,


> I’m confused. Do you really have an PoC implementation of what is to be
> achieved?
>
>

No indeed. I am using iptables driver to understand the FWaaS structure and
trying to replace it with our hw fw. Now my plan is to just create a fw
with some rules defined on it.


>
>
> As I look into these type of Implementations, I would prefer to have proxy
> driver/plugin to get the configuration from Openstack to external
> controller/device and do the rest of the magic.
>

Now i am bit confused about that proxy driver. Are we talking about
something like
https://github.com/openstack/neutron-fwaas/blob/master/neutron_fwaas/services/firewall/drivers/linux/iptables_fwaas.py
or another external app to handle the issues? Can you make this proxy part
a bit clearer?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20151102/a64104ff/attachment.html>


More information about the OpenStack-dev mailing list