Gateway firewall represents rules applied at the perimeter firewall.

There are predefined categories under the All Shared Rules view, where rules across all gateways are visible. Categories are evaluated from left to right, and the rules within the category are evaluated top down. The category names are assigned to the policy under which the rules are created.

Emergency

Used for Quarantine. Can also be used for Allow rules.

System

This category is read-only. These rules are automatically generated by NSX and are specific to internal control plane traffic, such as VPN rules.

Shared Pre Rules

These rules are globally applied across gateways.

Local Gateway

These rules are specific to a particular gateway.

Auto Service Rules

This category is read-only. The rules are automatically populated and apply to the data plane.

Default

These rules define the default gateway firewall behavior.