[one-users] Dynamic firewall like Amazon
Rangababu Chakravarthula
rbabu at hexagrid.com
Tue Feb 1 11:43:53 PST 2011
There was a post long back that talks about the same.
http://lists.opennebula.org/pipermail/users-opennebula.org/2009-September/000864.html
specifically the following text
>* * additional firewall to open some specific ports like what EC2 is offering
*
This is quite interesting. With the hook system we can have this very
easily. We may just add the relevant information in the VM template
and pass it to a hook that would setup the iptables in the cluster
node.
As I said all the machinery to implement this policies is in place and
should only require a bit of scripting effort. This is in fact one of
the goals of 1.4.0. We'd glad to help you work on this...
Cheers
Ruben
On Tue, Feb 1, 2011 at 1:12 PM, Toens Bueker <
toens.bueker at lists0903.nurfuerspam.neuroserve.de> wrote:
> Zeeshan Ali Shah <zashah at pdc.kth.se> wrote:
>
> > No Firewall yet , that is i am asking how to put mechanism like
> > Security Group of amazon . preferably with out any HW (if possible)
>
> OpenNebulas components allow you to implement and manage virtual
> networks on physical infrastructure.
>
> I'm not really sure where a "NATing device" should be implemented. As
> you use the Xen hypervisor you could implement routed (not bridged)
> network interfaces.
>
> But that is not an issue, which would be solved in a management
> software component like OpenNebula (as there are so many possibilities
> to implement such a solution).
>
> If you have a solution for your problem, I'm sure it should be
> possible to adapt OpenNebula to it.
>
> Regards,
> Töns
> --
> There is no safe distance.
> _______________________________________________
> Users mailing list
> Users at lists.opennebula.org
> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20110201/efdd9f96/attachment-0001.htm>
More information about the Users
mailing list