In Abiquo 5.0, the platform implementes implements vCloud firewall policies and classic firewalls at the Edge level, which is the distributed virtual firewall in vCenter and NSX. In previous versions we use VM IP literals but now we specify the VM object.
...
| Source or destination | New rule created using.... |
|---|---|
| Any/Internal/External/All | A Network object. "Any" or "All" maps to ''VSE'' |
object:vcloudUrn Also ''IP Sets'' or ''Security Groups'', aggregations in NSX/vCloud, configured in orgVdc / Security | A VM (for example) object - (source or destination restricted to specific virtualmachinevirtual machine) |
| IP or IPstart-IPend or network CIDR | A single IP, a IP range or an IP network specification |
| Comma separated list of the above values, e.g. 10.60.1.0,object:vmInternalProvidrId,10.60.2.0/24 | An IP, a VM, and a network CIDR |
...
When using a NAT IP in a VM, the platform also creates a firewall rule. And when using a public IP or NAT IP as a loadbalancer load balancer address, the platform also creates a firewall rule.
...