Overview of managing firewalls for network containers
The topic provides some background information about how cloud administrators can manage firewall rules for a network container with a firewall. The topic includes the following sections:
Types of firewalls managed by BMC Cloud Lifecycle Management
BMC Cloud Lifecycle Management supports the management of the following:
- Perimeter, or routed, firewalls — Perimeter firewalls are layer 3 firewalls, and protect traffic flowing between connected networks. Perimeter firewalls support many interfaces, each on a different subnet.
- Distributed firewalls (such as the Cisco Virtual Security Gateway appliance) — Distributed firewalls, also called transparent hypervisor firewalls or layer 2 firewalls, protect traffic flowing between virtual machines (VMs)
Note
When you are adding, editing, or deleting firewall rules, the network container is locked.
Cloud administrators can manage firewall rules (inbound and outbound access control lists (ACLs)) for both perimeter firewalls and distributed firewalls by:
- Adding or deleting firewall rules
- Editing a firewall rule to
- Enable or disable the firewall
- Allow or deny traffic
- Update other settings
Cloud administrators can manage firewall rules as follows:
- From a network container by using the BMC Cloud Administrator Console, as described in Managing perimeter firewalls and Managing distributed firewalls.
- From a service instance by using the BMC My Cloud Services Console, as described in Managing firewall rules from the BMC My Cloud Services Console.
Title
The network container must have at least one firewall.
Example components of a perimeter firewall definition
The following illustration depicts the main components of a perimeter firewall definition.
Related topics
Creating and editing firewall rules
Managing perimeter firewalls
Managing distributed firewalls
Comments
Log in or register to comment.