After deploying the vCenter Server you must add it to the exclusion list. The default rule in Region b also needs to be changed to deny.


  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://mgmt01vc51.lax01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.



      User name




  2. Exclude vCenter Server in Region B from firewall protection.
    1. Click NSX Managers and select the instance.
    2. Click Manage and click Exclusion List.
    3. Click the Add button.
    4. Add mgmt01vc51 to the Selected Objects list and click OK.
  3. Change the default rule action from allow to block for Region B.
    1. In the Navigator, click Networking & Security and click Firewall.
    2. From the NSX Manager drop-down menu, select
    3. Under Default Section Layer3, in the Action column for the Default Rule, change the action to Block.
    4. Click Publish Changes.