Exclude vCenter Server from all of your distributed firewall rules. This ensures that network access between vCenter Server and NSX is not blocked.

About this task

You configure NSX Distributed Firewall using vCenter Server. If a rule prevents access between NSX Manager and vCenter Server, you will not be able to manage the distributed firewall. For this reason, you must exclude vCenter Server from all of your distributed firewall rules, ensuring that access between the two products is not blocked.

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://sfo01m01vc01.sfo01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Exclude vCenter Server instances in Region A from firewall protection.
    1. In the Navigator, click Networking & Security.
    2. Click NSX Managers and select the 172.16.11.65 instance.
    3. Click Manage and then click Exclusion List.
    4. Click the Add button.
    5. Add sfo01m01vc01 to the Selected Objects list, and click OK.