You can navigate to an edge gateway to see the rules that apply to it.

Firewall rules applied to an edge gateway router only protect traffic to and from the router. They do not protect traffic traveling between virtual machines within a virtual data center. To protect intra-virtual data center traffic, create Trust Groups firewall rules for East-West protection.

Rules created on the firewall user interface applicable to an edge gateway are displayed in a read-only mode.

Rules are displayed and enforced in the following order:


User-defined rules from the Firewall user interface (Read Only).


Auto-plumbed rules (rules that enable control traffic to flow for edge gateway services).


User-defined rules on Firewall user interface.


Default rule.