VRF Firewall

Implementation

The Firewall is a resource instance of the firewall resource_type A project firewall is a Linux NFTable applied on the project vrf built on the Region’s PodNets.

A firewall consists of a list of ordered rules. The firewall_rule is a meta table of the firewall. The properties of a firewall_rule are source, destination, protocol, port, ip_version, allow, debug_logging, pci_logging and inbound_or_outbound.

ERD

API

Resources and Drivers

Primitives