VMware Networking Community
DineshReddy1205
Contributor
Contributor

NSX-T

We are using NSX-T 3.1.3 Version .

Recently we reconfigured DFW firewall rules -Police Applied to Specific Group instead of DFW .

But Applying Group level is not working .only it is working Applied to dfw level . 

We don't understand why it's not working when rules applied to group level instead of DFW .Any one explain ,what is the reason ?

Reply
0 Kudos
2 Replies
shank89
Expert
Expert

What do your groups consist of? 

 

It will not work if you are scoping rules to IPsets.

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3
Reply
0 Kudos
DineshReddy1205
Contributor
Contributor

Hi , 

group consists of ip sets . 
suppose if

1.source ip is nsx-t and destination is nsx-t network -applied to source and destination group .

2.source is any and dest is nsx -applied to dfw level 

3. source is nsx and dest external network -applied to source group only 

 

 

 

 

Reply
0 Kudos