Hello, I'm interested in the Contrail solution for Software Defined Networking in our organization. We've a VMWare farm with all our servers configured over our 2 datacenters and a Citrix farm with the Citrix XenApp and NetScaler solution for our end-users. The Citrix farm is configured as a RDS environment, so multiple users shares one Citrix XenApp server with only one IP. I think for our VMWare farm microsegmentation is not a problem, but is it possible to implement this also for our cliƫnts in a shared Citrix XenApp RDS environment? For instance, if user 1 from the Finance department on Citrix XenApp server 1 is allowed to communicate with the Finance servers, but user 2 from the Marketing department on Citrix XenApp server 1 is not allowed to do this, but he is allowed to communicate to the Marketing servers, is this casus configurable? I was thinking about Active Directory Group Membership to automatically read to which group the user belongs too and configure it with a firewall in Contrail and the firewall reads the user instead of the shared IP.
Are there any workarounds or solutions to make microsegmentation possible with Contrail? Thank you in advance. Kind regards, Frank Jan
_______________________________________________ Users mailing list [email protected] http://lists.opencontrail.org/mailman/listinfo/users_lists.opencontrail.org
