Features

LayerStack provides a network-based and stateful firewall service for your cloud servers. Adding flexibility to firewall management across all of your cloud servers. This firewall supports filtering for both inbound and outbound traffic, allows you to configure specific rules as packet filter.
You can create firewall templates for pre-defined rule sets, which makes it easier to manage your cloud servers in bulk and apply firewall rules as soon as you create a new cloud server.

Network Traffic Filter Rules

LayerStack Firewall dropped all packets by default. You can modify the rule sets in a Firewall Template to allow incoming or outgoing traffic access to the cloud servers from different ports within ICMP, TCP, and UDP protocols, also by targeting source or destination IP address.

Protocols and Ports

You can narrow the scope of a firewall rule by specifying protocols and/or ports. You may find the specification on the below table:

Specification	Example	Explanation
No protocol and port	ALL	If you select ALL, which means you do not specify a protocol, the firewall rule applies to all protocols and their applicable ports.
Protocol	TCP: ALL	If you specify a protocol without any port information, the firewall rule applies to that protocol and all of its applicable ports.
Protocol and single port	TCP: 443	If you specify a protocol and a single port, only that port of the protocol is applied by the firewall rule.
Protocol and port range	TCP: 20-22	If you specify a protocol and port range, only the port range for the protocol is applied by the firewall rule.

Source and Destination IP Address

You can target specific IP address or a range of IP addresses for inbound (ingress) and outbound (egress) rules.

Source IP Address: The source IP is only applicable to inbound (ingress) rules. You can specify an IP address or a range of IP addresses as sources for packets.

Destination IP Address: The destination IP is only applicable to outbound (egress) rules, which only accepts the IP address or a range of IP addresses you specified.

Regional Availability

Firewall Management is available in every region.

Role Permissions

Role	Permissions
Owner	Create Firewall Templates, Edit Firewall Rules, Clone Firewall Templates, Destroy Firewall Templates, Assign Cloud Servers to Firewall Templates, Remove Cloud Servers from Firewall Templates
Member	View Firewall Rules
Billing Member	View Firewall Rules
Billing Admin	Not Available

Limits

• Firewalls support only ICMP, TCP, and UDP.

Quick Start Guide

Create a Firewall Template & Add Firewall Rules

1. Log in to LayerPanel , go to the Services section and click Firewalls button.

2. Click the + Create Firewall button.

3. Input your Firewall Name, and then click the + Add New Inbound Rules & + Add New Outbound Rules for applying Inbound & Outbound Rule.

4. Select your required Cloud Servers from the server list and Assign to this firewall.

5. Click the save button.

Other Related Tutorials

LayerPanel 2 Setting

• Basic Firewall Information and Rule Setting

Server Operating System Setting

• How to set up & configure firewall using FirewallD for CentOS 8

• How to set up & configure Ubuntu Firewall (UFW) for Ubuntu 18

• Firewall Configuration using Iptables with Advanced Security on Ubuntu 14.04

• Setting up Windows Firewall on Windows Cloud Servers 2019

• Setting up Windows Firewall for your Windows Cloud Servers 2016

Troubleshooting / Testing

• How to check if TCP / UDP port is open on Linux & Windows Cloud Servers

• How to test Firewall Configuration with Nmap on Linux Cloud Servers

• Installing Telnet Client on Linux and Windows Cloud Servers