You can change the order of user-defined firewall rules to customize traffic flowing through the NSX Edge. For example, suppose you have a rule to allow load balancer traffic. You can now add a rule to deny load balancer traffic from a specific IP address group, and position this rule above the LB allow traffic rule.

1

Log in to the vSphere Web Client.

2

Click Networking & Security and then click NSX Edges.

3

Double-click an NSX Edge.

4

Click the Monitor tab and then click the Firewall tab.

5

Select the rule for which you want to change the priority.

Note

You cannot change the priority of auto-generated rules or the default rule.

6

Click the Move Up (Move Up icon) or Move Down (Move Down icon) icon.

7

Click OK.

8

Click Publish Changes.