My organization syslog server uses port 1514 and protocol udp, which is not a standard port/protocol for ESXi.

As a result, there is a need to create a custom firewall rule set. In ESXi v6.7 I had a copy of the service.xml on vmfs directory and used /etc/rc.local.d/local.sh to copy service.xml to /etc/vmware/firewall and set permissions accordingly.

In ESXi 7.0, the security does not allow changing permissions on service.xml file as root.

The following technote does not work but claims workaround in ESXi v7.0 for issue noted.
https://kb.vmware.com/s/article/2008226

Please advise.