By drilling down into the traffic data, you can evaluate the use of your resources and send session information to Distributed Firewall to create a new allow or block rule at any level.


  1. Log in to the vSphere Web Client.
  2. Select Networking & Security from the left navigation pane and then select Flow Monitoring.
  3. Click the Details by Service tab.
  4. Click a service to view the traffic flow for it.

    Depending on the selected tab, rules that allowed or denied traffic for this service are displayed.

  5. Click a rule ID to view rule details.
  6. Do one of the following:
    • To edit a rule:

      1. Click Edit Rule in the Actions column.

      2. Change the name, action, or comments for the rule.

      3. Click OK.

    • To add a rule:

      1. Click Add Rule in the Actions column.

      2. Complete the form to add a rule. For information on completing the firewall rule form, see Add a Distributed Firewall Rule.

      3. Click OK.

      The rule is added at the top of the firewall rule section.