Edge gateways provide firewall protection for incoming and outgoing sessions.

You can set the default firewall action to deny or allow all traffic. You can also add specific firewall rules to allow or deny traffic that matches the rules to pass through the firewall. These rules take precedence over the set default. See Add a Firewall Rule for an Edge Gateway

System administrators and organization administrators can configure edge gateway firewalls.


  1. Click the Manage & Monitor tab and click Organization VDCs in the left pane.
  2. Double-click the organization virtual datacenter name to open the organization virtual datacenter.
  3. Click the Edge Gateways tab, right-click the edge gateway name, and select Edge Gateway Services.
  4. Click the Firewall tab and select Enable firewall to enable firewall services, or deselect it to disable firewall services.
  5. Select the default firewall action.
    Option Description
    Deny Blocks all traffic except when overridden by a firewall rule.
    Allow Allows all traffic except when overridden by a firewall rule.
  6. (Optional) Select the Log check box to log events related to the default firewall action.
  7. Click OK.