Exclude vCenter Server from all of your distributed firewall rules. This ensures that network access between vCenter Server and NSX is not blocked.

You configure NSX Distributed Firewall using vCenter Server. If a rule prevents access between NSX Manager and vCenter Server, you will not be able to manage the distributed firewall. For this reason, you must exclude vCenter Server from all of your distributed firewall rules, ensuring that access between the two products is not blocked.

1

Log in to vCenter Server by using the vSphere Web Client.

a

Open a Web browser and go to https://mgmt01vc01.sfo01.rainpole.local/vsphere-client.

b

Log in using the following credentials.

Setting

Value

User name

administrator@vsphere.local

Password

vsphere_admin_password

2

Exclude vCenter Server instances in Region A from firewall protection.

a

In the Navigator, click Networking & Security.

b

Click NSX Managers and select the 172.16.11.65 instance.

c

Click Manage and then click Exclusion List.

d

Click the Add button.

e

Add mgmt01vc01 to the Selected Objects list, and click OK.