[Openstack] FWaaS vs Security Groups
Martinx - ジェームズ
thiagocmartinsc at gmail.com
Mon Oct 28 20:58:09 UTC 2013
Guys,
I'm trying to figure out the main differences between FWaaS and "Security
Groups".
* Does it complement each other? Or is FWaaS a "Security Groups"
replacement...?
* Can FWaaS manage the "Tenant Namespace Router NAT Table"?
* Does FWaaS manage the same iptables/ip6tables tables at L3 Namespace
router in which the "Security Groups" already manages too?
For example, two commands to do (almost) the same thing? Like this:
Open TCP port 80:
FWaaS:
neutron firewall-rule-create --protocol tcp --destination-port 80 --action allow
Security Groups:
neutron security-group-rule-create --direction ingress --protocol tcp
--port_range_min 80 --port_range_max 80 <security_group_uuid>
I'm a bit confused about the aims and proposals of each approach /
project...
Thanks!
Thiago
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20131028/15407a8c/attachment.html>
More information about the Openstack
mailing list