Tag Based Security Policy
Aviatrix Gateway security policies are implemented at each gateway. Key features are:
-
It is a L4 stateful firewall that filters on CIDR, protocol and port.
-
Each policy is associated with an Allow or Deny action.
-
A Base policy for "Allow" or "Deny" for the gateway can be used as a catch-all rule.
-
All security policy events as well as packets can be logged to Splunk, SumoLogic, Syslog, ELK, and Datadog.
With Tag Management, you can associate an IP address or a subnet with a name tag and use it as a shorthand to specify the source and destination for your security rules.
See Deploying the Aviatrix Stateful Firewall for more information.