Page Comparison

...

To synchronize firewalls do these steps:

1. In the myCloud view go to Virtual datacenters, or Locations, or for Google Cloud Platform select the Global view

2. Go to Network → Firewalls

3. Click the double-arrow synchronize button 

To synchronize a firewall in AWS before you add new firewall rules:

1. Select the firewall and click the double-arrow synchronize button

...

Create a firewall policy

The platform can create firewall policies in virtual datacenters in the provider, or in the platform only, for later use in providers, depending on provider support.

...

To create a new firewall, do these steps:

1. Go to Virtual datacenters → Network → Firewalls

   1. For GCP go to Global → Network → Firewalls

2. Click the Add button

3. Enter the firewall details

   1. In GCP, if you assign a firewall to a Virtual datacenter, you can then use it as a default firewall

   2. In VCD, if you do not select a Virtual datacenter, the platform will create the firewall in the platform only, not in the provider

      Image Modified

4. Click Save to create the firewall

5. Add Firewall rules as describe in Create firewall rules.

...

Edit firewall policy rules

...

To add a new firewall rule:

1. Select the virtual datacenter or location

2. Select the firewall

3. On the Firewall rules panel, click the pencil Edit button

4. Select the Inbound or Outbound tab for the traffic direction you wish to control

5. Enter the details of a rule

   1. Protocol

      • Select from Common protocols, OR

      • Select and enter a Custom protocol

   2. Port range with the Start port and End port that this rule will apply to.
      To enter one port, enter the same value twice, or optionally apply the rule to a number of ports at the same time. 
      For Azure and GCP, you can enter:

      1. a single port, such as 80

      2. a range, such as 1024-65535

      3. a list of port/range, such as 80,1024-65535

   3. Sources or Targets as a network address and netmask, or a comma separated list of these (with no spaces)

6. Click Add. The firewall rule will be added to the Firewall rules list

7. Enter more rules as required, then click Save

...

...

To create a new firewall, do these steps:

1. Go to Virtual datacenters → Network → Firewalls
   or go to myCloud → Global → select the GCP provider → Network → Firewalls

2. Click the Add button

3. Enter the firewall details and select the direction

   For more details see table of GCP firewall policy table below

4. Go to Inbound or Outbound and add firewall rules

   For more details see GCP firewall policy rules table below

5. After you finish adding rules, click Save

The platform will create your firewall in the provider.

...

To set or unset a default firewall for a virtual datacenter:

1. Select the firewall

2. Click the star default firewall button

...

When the user creates a VM, the platform will assign the default firewall. The firewall rules apply to VMs, not individual NICs on the VMs. Changes to the firewall ruleset will apply to every VM in the virtual datacenter with the default firewall. If you do not set a default firewall but the provider requires one, for example, AWS, the platform will set the provider's default firewall. In AWS the default firewall is not marked. 

...

To edit a firewall policy:

1. Go to Virtual datacenters → select virtual datacenter

...

1. OR
   select a region → Network → Firewalls

2. Select the firewall policy and click the pencil edit button.

   1. In GCP only, optionally select a virtual datacenter. You can use this option to recommend firewalls for your users.
      If you do not select a virtual datacenter, the firewall will still exist in the provider and users can still attach this firewall to their VMs.

   2. If you select the Default option, the platform will assign this firewall to new VMs.

3. Make your changes and click Save

...

Add tags to a firewall policy

...

Move a firewall policy to another virtual datacenter

Before you begin:

1. Check if your provider allows you to move firewalls. For example, Azure ARM allows you to move firewalls to other VDCs in the same resource group

To move a firewall to another virtual datacenter

1. Go to Virtual datacenters → Locations or Global

2. Select the public cloud region, or Azure provider and resource group

3. Edit the firewall policy and select the new Virtual datacenter

...

Display firewall policies

...

To display firewalls in a virtual datacenter in a provider:

1. Go to Virtual datacenters → select a virtual datacenter → Network → Firewalls

   Image Modified

To display all firewalls in Google Cloud Platform

1. Go to myCloud → Global view

...

2. Select the GCP provider → Networks → Firewalls

To display all firewalls in a location (public cloud region or datacenter):

1. Go to Cloud virtual datacenters view → Locations

2. Select a location

3. Go to Network → Firewalls

   Image Modified

   Firewalls that do not exist in the provider are grayed out, and you should delete these firewalls.

...

To display firewalls in an Azure Resource Group:

1. Go to Cloud virtual datacenters view

2. Go to Global → Azure → Resource Groups

...

2. Select a resource group

3. To display the details of the firewall, edit the firewall

   Image Modified

...

Assign a firewall policy to a VM

...

To delete firewall rules, do these steps.

1. Go to Virtual datacenters → select a virtual datacenter

...

1. OR
   select All → Network → Firewalls

2. Edit the firewall

3. Select the Inbound or Outbound tab

4. On the left-hand side of each rule you wish to delete, click the trash bin Delete button

5. Click Save

...

Delete a firewall policy

To delete a firewall policy:

1. Edit each VM that is using the firewall policy to remove the firewall policy

2. Select the firewall policy

3. Click the Delete button

...