We are using NSX-T 3.1.3 Version .
Recently we reconfigured DFW firewall rules -Police Applied to Specific Group instead of DFW .
But Applying Group level is not working .only it is working Applied to dfw level .
We don't understand why it's not working when rules applied to group level instead of DFW .Any one explain ,what is the reason ?
What do your groups consist of?
It will not work if you are scoping rules to IPsets.
Hi ,
group consists of ip sets .
suppose if
1.source ip is nsx-t and destination is nsx-t network -applied to source and destination group .
2.source is any and dest is nsx -applied to dfw level
3. source is nsx and dest external network -applied to source group only