The following security groups are created by NSX Cloud at the time of PCG deployment:

The gw security groups are applied to the respective PCG interfaces.

Table 1. Public Cloud Security Groups created by NSX Cloud for PCG interfaces
Security Group name Available in Microsoft Azure? Available in AWS? Full Name
gw-mgmt-sg Yes Yes Gateway Management Security Group
gw-uplink-sg Yes Yes Gateway Uplink Security Group
gw-vtep-sg Yes Yes Gateway Downlink Security Group
Table 2. Public Cloud Security Groups created by NSX Cloud for Workload VMs
Security Group name Available in Microsoft Azure? Available in AWS? Descriptiom
quarantine Yes No Quarantine security group for Microsoft Azure
default No Yes Quarantine security group for AWS
vm-underlay-sg Yes Yes VM Non-Overlay security group
vm-override-sg Yes Yes VM Override Security Group
vm-overlay-sg Yes Yes VM Overlay security group (this is not used in the current release)
vm-outbound-bypass-sg Yes Yes VM Outbound Bypass Security Group (this is not used in the current release)
vm-inbound-bypass-sg Yes Yes VM Inbound Bypass Security Group (this is not used in the current release)