OPEN FIREWALL RULE TO PUBIC SERVICE TO INTERNET

Owned by Tran Dai Quan
Jun 27, 2023
2 min read

Default Edge gateway firewall rule on Tenant is set to Deny all. We need to create the firewall rules for traffic to virtual service from internet. More detail on edge way firewall.

1. Create IP set:

Log in to the HI GIO PORTAL as Organization Administrator and Navigate to 

Networking > Edge Gateway > Security > IP Sets.

Press NEW to define IP Set for VIPs.

 

·       Name: type IP Set name (example VIP-Web)

·       IP Address: type IP Addr or IP Range (this IP for VIP that created before).

 

2. Create edge firewall rule

Log in to the HI GIO PORTAL as Organization Administrator and Navigate to 

Networking > Edge Gateway > Services > Firewall.

Press EDIT RULES to add NEW RULE for VIPs.

 

·       Name: type Rule name (example Allow_VSWeb)

·       Applications: choose your application types (example: HTTP and HTTPS)

·       Source: Any (for internet users)

·       Destination: Select IP Set configured before (example VS_192.168.2.10)

·       Action: Allow

Click Save to complete EDIT RULES

 

NOTE: Incase we’re using distributed firewall on our environment. we should to create distribute firewall rules for virtual service and pool

Â