openstack team mailing list archive
-
openstack team
-
Mailing list archive
-
Message #22664
Re: [Quantum] Anybody implemented DMZ?
> I want the traffic to be routed to the external network through the
> Quantum router. But it doesn't happen.
> Am I doing something wrong?
If I understand correctly you are trying to set this up:
http://docs.openstack.org/folsom/openstack-network/admin/content/use_cases_single_router.html
As mentioned there Security / Filtering between tenants is provided by Security groups.
Other ways to archieve network isolation would be using bridge_mapped networking instead (patching to physical vlan's) or setup policy based routing rules on the l3 routing node (to make sure everything goes to the dmz router first)
Cheers,
Robert van Leeuwen
References