Configuring Neutron for the Firewall service
The OpenStack Networking functionalities can be classified as core and service. Firewall is part of the service functionality and Neutron needs to be configured in order to support it.
In this recipe, we will configure the Neutron server as well as the Neutron FWaaS agent in order to enable the Firewall functionality in OpenStack.
Getting ready
For this recipe, we will assume that the Neutron ML2 plugin has been configured to use VLAN as the type driver and Open vSwitch as the mechanism driver.
How to do it…
The following steps will show you how to configure Neutron to provide a Firewall service in OpenStack:
With the appropriate credentials, SSH into the node where the Neutron server is running. In our setup, it will be the Controller and Network node.
Open the
neutron.confconfiguration file using your desired editor. For example, the command for the vi editor will be as follows:openstack@controller:~$ sudo vi /etc/neutron/neutron.confIn the
[DEFAULT...
