Mark and Martinx thank you both for your suggestions. I had tried to build PFSense in the past but without success. Indeed my goal is to run the virtual firewall as an instance since I am on an older OpenStack version (IceHouse) with nova-networking and therefore I cannot have control over the outgoing connections. Regards, G. > For running it as an Instance? > > You can try: > > - PFSense; > > - Zentyal; > > However, youll need to make use of the Neutron feature called > "port_security_enabled = false" for the vNIC attached to the > "internal" subnet (behind the firewall). > > Just a curiosity, why dont you use the Neutron native firewall that > resides on each L3 Router? > > On 15 February 2016 at 15:56, Georgios Dimitrakakis wrote: > >> Hi! >> >> Can anyone suggest me of a virtual firewall appliance which is >> compatible with OpenStack? >> >> Best regards, >> >> G. >> >> _______________________________________________ >> Mailing list: >> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [1] >> Post to : openstack at lists.openstack.org [2] >> Unsubscribe : >> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack [3] > > > > Links: > ------ > [1] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > [2] mailto:openstack at lists.openstack.org > [3] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > [4] mailto:giorgis at acmac.uoc.gr