After deploying the vCenter Server you must add it to the exclusion list. The default rule in Region b also needs to be changed to deny.

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://lax01m01vc01.lax01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Exclude vCenter Server in Region B from firewall protection.
    1. Click NSX Managers and select the 172.17.11.65 instance.
    2. Click Manage and click Exclusion List.
    3. Click the Add button.
    4. Add lax01m01vc01 to the Selected Objects list and click OK.
  3. Change the default rule action from allow to block for Region B.
    1. In the Navigator, click Networking & Security and click Firewall.
    2. From the NSX Manager drop-down menu, select 172.17.11.65.
    3. Under Default Section Layer3, in the Action column for the Default Rule, change the action to Block.
    4. Click Publish Changes.