Configuration procedure
Figure-1 Configuration procedure
Table-1 Service chain configuration procedure
|
Step |
Description |
|
Service chain firewalls are logical entities that are referenced as service instances by service chains to protect the internal network. A firewall rule permits or denies traffic by IP address or port. You can create firewall rules one by one or import firewall rules in bulk. A service chain load balancer can distribute access traffic to back-end real servers based on the specified forwarding policy. You need to create virtual server, listener, real server group (and add real servers to it), and load balancer, as well as configuring health monitoring settings. For more information, see the service introduction. You can specify a service chain load balancer as a service instance for a service chain. |
|
|
Create traffic feature groups that match traffic by subnet, vNIC (port), or network. |
|
|
Specify source and destination traffic feature groups and service instances for service chains. A service chain identifies the source subnet for packets based on the source port and identifies the destination port and destination subnet based on the destination IP address. Then, it matches the traffic features to its source and destination traffic feature groups and directs matching packets to the service instance. Unmatched traffic is not forwarded through the service chain. |