You can create an NSService to specify the characteristics that network matching uses, or to define the type of traffic to block or allow in firewall rules.

Prerequisites

Verify that Manager mode is selected in the NSX Manager user interface. See NSX Manager. If you do not see the Policy and Manager mode buttons, see Configure User Interface Settings.

Procedure

  1. From your browser, log in with admin privileges to an NSX Manager at https://<nsx-manager-ip-address>.
  2. Select Inventory > Services > Add.
  3. Enter a name.
  4. (Optional) Enter a description.
  5. Select Specify a protocol to configure an individual service, or select Group existing services to configure a group of NSServices.
  6. For an individual service, select a type of service and a protocol.
    The available types are Ether, IP, IGMP, ICMP, ALG, and L4 Port Set
  7. For a service group, select a type and members for the group.
    The available types are Layer 2 and Layer 3 and above.
  8. Click ADD.