Iam new to Vcloud soulution , if i wanted to open ports internal between vms inside an Org , can we use Firewall of Edge and set rules there ?
or we have to use (distributed firewall ) as they are east west traffic ?
Its depends upon the type of VCD network you are using. If the workloads are connected to same edge and they all fall under single subnet, DFW is required. If you have multiple tenants and multiple edges and transit paths are terminating on upstream devices, you can have have End-End F/W check . Like i said, there are multiple options based on design.