Add Rules + sign appears to be greyed out in VMware NSX for vSphere 6.x Distributed Firewall configuration
book
Article ID: 341200
calendar_today
Updated On:
Products
VMware vDefend Firewall
Issue/Introduction
Symptoms:
When attempting to add a firewall rule in NSX, you find that the green + sign is greyed out
Under the General section, you may be able to click on an existing rule to get the green + sign enabled
Under the Ethernet section, clicking on an existing rule to get the green + sign enabled fails
Environment
VMware NSX for vSphere 6.2.x VMware NSX for vSphere 6.0.x VMware NSX for vSphere 6.1.x
Cause
This issue occurs because by default, the addition of rules for the firewall is meant to work in Add Below mode. Any new rule is meant to be added below a selected rule. Since rules cannot be added below the default rules, one needs to be selected.
The issue persist if there is only one default rule listed under the Ethernet section.
Resolution
This issue is resolved in:
VMware NSX for vSphere 6.1.5
If you are unable to upgrade, follow this workaround.
To work around the issue, under the Ethernet section, use the + sign in the Action bar, further to the right in the Rules wizard.