After deploying the vCenter Server you must add it to the exclusion list. The default rule in Region b also needs to be changed to deny.

1

Log in to vCenter Server by using the vSphere Web Client.

a

Open a Web browser and go to https://mgmt01vc51.lax01.rainpole.local/vsphere-client.

b

Log in using the following credentials.

Setting

Value

User name

administrator@vsphere.local

Password

vsphere_admin_password

2

Exclude vCenter Server in Region B from firewall protection.

a

Click NSX Managers and select the 172.17.11.65 instance.

b

Click Manage and click Exclusion List.

c

Click the Add button.

d

Add mgmt01vc51 to the Selected Objects list and click OK.

3

Change the default rule action from allow to block for Region B.

a

In the Navigator, click Networking & Security and click Firewall.

b

From the NSX Manager drop-down menu, select 172.17.11.65.

c

Under Default Section Layer3, in the Action column for the Default Rule, change the action to Block.

d

Click Publish Changes.