Cloud computing is booming in recent years, a variety of cloud services have emerged and Infrastructure as a Service which is lower layer of the cloud services has become one of popular applications. User may hire the cloud services from cloud service providers, when they migrate self-developed applications into the cloud environment. Although users can create the huge virtual computing network, which can substitute the huge costs and settings of physical devices, the security issues have become the main points of users concerns. Therefore, this paper in order to enhance the reliability of cloud services for users, we will be focus on the design of the firewall in a cloud data center. Firewall settings are often the most important and basic in the commercial environment, whether the physical environment or virtual environment. In this thesis, we proposed an architecture about dynamic virtual firewall in the cloud virtual environment. The use of cloud virtualization technology flexible, so that the system can achieve security device to dynamically establish and release virtual resources. We used the open-source software OpenWrt compile suitable for use in the cloud environment, the operating system for the proposed system of this paper use, thereby the system cost could be reduced, and the flexible firewall resource could be used efficiently.