To create firewall and NAT rules, you can use preconfigured application port profiles and custom application port profiles.

Application port profiles include a combination of a protocol and a port, or a group of ports, that is used for firewall and NAT services on the edge gateway. In addition to the default port profiles that are preconfigured for NSX-T Data Center, you can create custom application port profiles.

When you create a custom application port profile on an edge gateway, it becomes visible to all the other NSX-T Data Center edge gateways that are in the same organization VDC.

Procedure

  1. From the top navigation bar, select Resources and click Cloud Resources.
  2. In the left panel, click Edge Gateways.
  3. Click the edge gateway.
  4. Under Security, click Application Port Profiles.
  5. In the Custom Applications section, click New.
  6. Enter a name and, optionally, a description for the application port profile.
  7. Select a protocol from the drop-down menu.
  8. Enter a port, or a range of ports, separated by a comma, and click Save.

What to do next

Use application port profiles to create firewall and NAT rules. See Add an NSX-T Data Center Edge Gateway Firewall Rule and Add an SNAT or a DNAT Rule to an NSX-T Edge Gateway.