Hybrid Cloud VFW

Hybrid Cloud VFW provides cross-cloud unified firewall ACL rules. Firewall ACL rules configured on a hybrid cloud portal can be used on both the private cloud and third-party clouds. This service is supported only by the resource plane hybrid cloud.

Cross-Cloud Unified Confogiratopm

Firewall rules configured on a hybrid cloud portal can be used on both the private cloud and third-party clouds.

Flexible Configuration

You can configure firewalls based on subnets and ports and can also configure the blacklist, whitelist, and quintuple filtering.

High Performance

Firewalls are deployed in distributed mode. Each compute node only needs to manage its own VMs and network traffic. There is no performance bottleneck.

High Integration

Hybrid Cloud VFW uses native and FWaaS v2 community standard APIs, providing better interconnection with third-party vendors.

Application Scenarios

  • Intra-VPC ACL Control

  • Inter-VPC ACL Control

Intra-VPC ACL Control

Intra-VPC ACL Control

Packets can be filtered by protocol number, source/destination port number, or source/destination IP address. Inbound and outbound traffic between subnets can be controlled by a VPC.

Advantages

  • Cross-Cloud Uniform ACL


    Complete Quintuple Filtering

    Packets can be filtered by protocol number, source/destination port number, or source/destination IP address.

  • Policy Status

    Hybrid Cloud VFW supports packet policy recording and automatic reverse setting.

Inter-VPC ACL Control

Inter-VPC ACL Control

Packets can be filtered by protocol number, source/destination port number, or source/destination IP address. Inbound and outbound traffic between subnets can be controlled by a VPC.

Advantages

  • Cross-Cloud Uniform ACL


    Policy Sharing

    An ACL policy can be referenced by multiple VPCs, enhancing usability.

  • VPC-specific Firewall

    This feature simplifies the configuration process in scenarios with multiple interconnected projects.

Functions

Flexible Configuration

The configuration is the same as that of the traditional firewall. Traditional hardware firewall services of enterprises can be seamlessly migrated.

  • Complete quintuple filtering: Packets can be filtered by protocol number, source/destination port number, or source/destination IP address.

  • Policy status: Packet policy recording and automatic reverse setting are both supported.

  • VPC-specific firewall: This feature simplifies the configuration process in scenarios with multiple interconnected projects.

  • Policy sharing: An ACL policy can be referenced by multiple VPCs, enhancing usability.

Standardized APIs

Hybrid Cloud VFW uses native and FWaaS v2 community standard APIs.

Distributed Deployment

Distributed deployment is supported, eliminating performance bottlenecks.