With time windows, security administrators can restrict traffic from a source or to a destination, for a specific time period.
Time-based rules are available for distributed and gateway firewalls on ESXi hosts. Time windows apply to a firewall policy section, and all the rules in it. Each firewall policy section can have one time window. The same time window can be applied to more than one policy section. If you want the same rule applied on different days or different times for different sites, you must create more than one policy section. Time-based rules are available for distributed and gateway firewalls on ESXi hosts.
In NSX 4.0.1.1 and later, time-based rules are supported on both Local Managers and Global Managers in NSX Federation. Time can be specified in UTC for all sites, or time can be specified per local time zone. If you want the same rule applied on different days or different times for different sites, you must create more than one policy section.
Prerequisites
Network Time Protocol (NTP) is an Internet protocol used for clock synchronization between computer clients and servers. NTP service must be running on each transport node when using time-based rule publishing.
If a time-zone is changed on the edge transport node after the node is deployed, reload the edge node or restart the data plane for time-based gateway firewall policy to take effect.
For details see Configuring NTP on Appliances and Transport Nodes.