NSX-T Gateway firewall rule to exclude a source / destination object
book
Article ID: 312608
calendar_today
Updated On:
Products
VMware NSX
Issue/Introduction
- The NSX-T Distributed Firewall supports the use of excluding/negating source or destination objects in firewall rules.
- The NSX-T Gateway Firewall does not support the use of excluding/negating source or destination objects in firewall rules.
- If attempting to create firewall rules excluding/negating source or destination objects the below expected error is encountered:
Source or Destination exclusion is not supported when only identity policy group is used in Security Policy Rules
Environment
VMware NSX-T Data Center
Feedback
thumb_up
Yes
thumb_down
No