Logical firewalls are of two types: distributed firewall and Edge firewall. A distributed firewall is ideally deployed to protect any east-west traffic, while an Edge firewall protects any north-south traffic.
The firewall rules UI allows you to add sections to separate firewall rules. Both L2 and L3 rules can have multiple sections that can be managed accordingly. For cross-vCenter environments, you must create a universal section before you can add the universal rules, and you must manage the universal rules from the primary NSX manager.
To add a firewall rule, follow these steps:
- Go to Networking & Security | Firewall ...