Default firewall settings apply to traffic that does not match any of the user-defined firewall rules. The default Edge firewall policy blocks all incoming traffic. You can change the default action and logging settings.

Procedure

  1. In the vSphere Web Client, navigate to Networking & Security > NSX Edges.
  2. Double-click an NSX Edge.
  3. Click the Manage tab and then click Firewall.
  4. Select the Default Rule, which is the last rule in the firewall table.
  5. Point to the Action cell of the new rule and click edit.
    1. Click Accept to allow traffic from or to the specified source and destination.
    2. Click Log to log all sessions matching this rule.

      Enabling logging can affect performance.

    3. Type comments if required.
    4. Click OK.
  6. Click Publish Changes.