weizhouapache commented on issue #9144: URL: https://github.com/apache/cloudstack/issues/9144#issuecomment-2139391328
> @weizhouapache actually in my diagram above, im suggesting to not use VNF to provide Autoscaling Feature. Let the current logic work as is. > > The end result we are trying to achieve is to implement some sort of security implementation from the internet, just before it gets distributed to the VMs in the VPC. > > * Internet -> VNF -> Virtual Router -> Autoscale Grousp (Ideal Scenario) > > But this is not possible because the default gateway must be the Virtual Router. > > So in my diagram, i was suggesting another way to achieve that is by having the Virtual Router, route traffic to the VNF. VNF will then return the traffic after processing. Then, the Router can continue to distribute the traffic to whichever services need it via the existing logic (Eg. Autoscaling) > > The implementation would look like this. > > * Internet -> Virtual Router -> VNF -> Virtual Router -> Autoscale Groups the second option looks like https://docs.aws.amazon.com/vpc/latest/mirroring/what-is-traffic-mirroring.html not exactly the same If you have full control on the virtual router and VNF, you can do PoC by some manual changes. I have no idea if it is possible. option 1 make more sense to me. the public Ip needs to be associated to the VNF. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
