NSX-T Gateway firewall rule to exclude a source / destination object
search cancel

NSX-T Gateway firewall rule to exclude a source / destination object

book

Article ID: 312608

calendar_today

Updated On:

Products

VMware NSX Networking

Issue/Introduction

  • The NSX-T Distributed Firewall supports the use of excluding/negating source or destination objects in firewall rules.
  • The NSX-T Gateway Firewall does not support the use of excluding/negating source or destination objects in firewall rules.
  • If attempting to create firewall rules excluding/negating source or destination objects the below expected error is encountered:

Source or Destination exclusion is not supported when only identity policy group is used in Security Policy Rules


Environment

VMware NSX-T Data Center
Powered by Wolken Software