After deploying vCenter Server, add the vCenter Server instance to the distributed firewall exclusion list.


  1. Log in to vCenter Server by using the vSphere Client.
    1. Open a Web browser and go to https://lax01m01vc01.lax01.rainpole.local/ui.
    2. Log in using the following credentials.
      Setting Value
      User name administrator@vsphere.local
      Password vsphere_admin_password
  2. Exclude the management vCenter Server instance from the firewall protection.
    1. From the Home menu , click Networking and Security.
    2. Click Firewall Settings and click the Exclustion List tab.
    3. From the NSX Manager drop-down menu, select
    4. Under User Excluded VMs, click the Add button.
    5. On the Select VM(s) to exclude dialog box, move lax01m01vc01 to the Selected Objects section, and click OK.
  3. Change the default rule action from Allow to Block.
    1. In the Navigator pane, click Firewall.
    2. From the NSX Manager drop-down menu, select
    3. On the General tab, expand the Default Section Layer3 section.
    4. In the Action column, for the Default Rule, change the action to Block.
    5. Click Save and click Publish.