Requirements to Deploy cSRX on Contrail vRouter
This topic discusses the requirements for integrating cSRX Container Firewall into Contrail cluster.
Contrail Requirements
Table 1 lists the supported platforms and server requirements.
Component |
Specification |
Release |
---|---|---|
Contrail Networking |
2005 |
|
Ubuntu |
14.04 and newer |
|
CentOS |
6.5 and newer |
|
Redhat |
7.0 and newer |
|
vCPU |
2 CPU cores |
|
Memory |
8 GB |
|
Disk space |
40 GB |
|
Network Interfaces |
2 Revenue Interfaces |
cSRX Container Firewall Container Interfaces
Table 2 lists the cSRX container interfaces.
Interfaces |
Purpose |
Created By |
---|---|---|
eth0 |
Management Interface |
Orchestrator |
eth1 |
ge-0/0/0 |
Orchestrator |
eth2 |
ge-0/0/1 |
Orchestrator |
lo |
Loopback |
Docker Engine |
cSRX Container Firewall Basic Configuration Settings
The cSRX container requires the following basic configuration settings:
Interfaces must be bound to security zones.
Policies must be configured between zones to permit or deny traffic.