A MAC set is a group of MAC addresses that you can add as the source or destination in a firewall rule.

You create a MAC set using the Grouping Objects page of the vCloud Director tenant portal. The Grouping Objects page is available on both the Services and Edge Gateway screens.

Prerequisites

To use the vCloud Director tenant portal to work with edge gateway services, the edge gateway must be converted to an advanced edge gateway. You can do this on the edge gateway in the vCloud Director Web console or from the tenant portal. For details on performing this step from the tenant portal, see Convert an Edge Gateway to an Advanced Edge Gateway.

Procedure

  1. Open the Grouping Objects page.

    Option

    Action

    Open through Edge Gateway Services

    1. Navigate to Networking > Edges.

    2. Select the edge gateway to edit, and click Configure Services.

    3. Click Grouping Objects.

    Open through Security Services

    1. Navigate to Networking > Security.

    2. Select the security service to edit, and click Configure Services.

    3. Click Grouping Objects.

  2. Click the MAC Sets tab.

    The MAC sets that are already defined are displayed on the screen.

  3. To add a MAC set, click the Create (Create button) button.
  4. Type a name for the set and, optionally, a description, as well as the MAC addresses to be included in the set.
  5. (Optional) If you are specifying the MAC set using the Grouping Objects page on the Services screen, use the Inheritance toggle to enable inheritance and allow visibility at underlying scopes.

    Inheritance is enabled by default.

  6. To save the MAC set, click Keep.

Results

The new MAC set is available for selection as the source or destination in firewall rules.