Is it mandatory to enable FW when using load balancers with NSX Edge?
Hi,
There are two ways to deploy the Load Balancer: one armed and in-line (difference depicted below). One armed requires NAT, which in turn requires the firewall. In-line doesn't require the firewall, because it doesn't require NAT.
Inline doesn't require SNAT as the source remains unchanged, however, it actually still requires DNAT so firewall needs to be enabled on the ESG either way.
The Load Balancer Configuration Verification and Troubleshooting Using the UI guide alludes to this as a pre-requisite:
I stand corrected!
Thankyou!
Thnakyou!