Firewall rules can be created using a custom protocol number that is not listed in the protocols drop-down menu.

A firewall rule with a custom protocol number can be created on the distributed firewall or the NSX Edge firewall.

Procedure

  1. In the vSphere Web Client, navigate to Networking & Security > Security > Firewall.
  2. Ensure that you are in the Configuration > General tab to add an L3 rule. Click the Add rule (add icon) icon.
  3. Point to the Name cell of the new rule and click edit.
  4. Type a name for the new rule.
  5. Specify theSource of the new rule. See Add a Firewall Rule Source or Destination for details.
  6. Specify the Destination of the new rule. See Add a Firewall Rule Source or Destination for details.
  7. Point to the Service cell of the new rule. Click the Add Service (add icon) icon
  8. Click New Service on the bottom left of the Specify Service window.
  9. Enter the Name of the new protocol (such as OSPF).
  10. From the Protocols drop-down menu select L3_OTHERS.
    A Protocol Number field appears under the drop-down menu.
  11. Enter the Protocol Number (such as 89 for OSPF).
  12. Click OK.
  13. Publish firewall rule. See Publish a Firewall Rule for details.

Results

A firewall rule has been created using a custom protocol number.