VMware Networking Community
Hedin333
Contributor
Contributor
‎02-21-2019 08:58 PM

Impossible to add a new rule to the DFW section when filters Applied

Hello to all.

I usually use the Service Composer to manage my the DFW rules.

But for testing some components, it was necessary to create a separate section in the DFW partition.

After I found the section through the filter, I found that there is no possibility to add or delete rules!

If you do not use a filter, then everything is fine, you can add and remove rules.

Is this so specially made?

I am afraid to imagine what would happen if all my rules were created in sections.

They could not be managed. Manual search for the desired section is not very convenient, especially when there are many.filters.JPG

Tags (1)
0 Kudos
5 Replies
chrisgnoon
Enthusiast
Enthusiast
‎02-22-2019 12:33 AM

Hi,

It's the first time I have seen this issue, but it strikes me as, by design.  Because you are using the sections function in the DFW, the software might not know which section you want to add the new rule too.  I wouldn't be surprised if this is "fixed" in a later version of the code.  What version are you using?

Try adding a new rule to a different section using the same UDP-8888 service.  Filter by service 8888 and filter again, you should see 2 rules in 2 different sections (hopefully).  Does that then allow you to add/delete rules?

Chris Noon | CCDP | CCNP | VCDX 289
Don't forget to mark as solved if your questions are answered.
0 Kudos
chrisgnoon
Enthusiast
Enthusiast
‎02-22-2019 01:26 AM

I've just checked on my version of 6.4.0 and I have the same issue.

Chris Noon | CCDP | CCNP | VCDX 289
Don't forget to mark as solved if your questions are answered.
0 Kudos
Hedin333
Contributor
Contributor
‎02-24-2019 07:40 PM

My version 6.4.2.9643711

A very strange situation. Managing rules with a large number of sections is not very convenient.

0 Kudos
chrisgnoon
Enthusiast
Enthusiast
‎02-25-2019 12:51 AM

It can be a little messy, but it's the same issue when you have 100's of FW rules regardless of sections.

Try minimizing all of the sections and only opening the one you need to edit.  I find that helps.  Continue to use the filter to find rules you need to check or edit.

Chris Noon | CCDP | CCNP | VCDX 289
Don't forget to mark as solved if your questions are answered.
0 Kudos
DaleCoghlan
VMware Employee
VMware Employee
‎03-03-2019 01:28 PM

Unfortunately what you've described has been around since the very beginning of NSX (i.e. 6.0 days), you just learn to workaround/live with it.

0 Kudos