Tag Based Security Policy

Aviatrix Gateway security policies are implemented at each gateway. Key features are:

  • It is a L4 stateful firewall that filters on CIDR, protocol and port.

  • Each policy is associated with an Allow or Deny action.

  • A Base policy for "Allow" or "Deny" for the gateway can be used as a catch-all rule.

  • All security policy events as well as packets can be logged to Splunk, SumoLogic, Syslog, ELK, and Datadog.

With Tag Management, you can associate an IP address or a subnet with a name tag and use it as a shorthand to specify the source and destination for your security rules.

See Deploying the Aviatrix Stateful Firewall for more information.