Solved: Re: NSX Distributed Firewall

plotniku · ‎07-10-2014

Hi,

probably i am doing something wrong, but i cannot not filter SSH from one VM to another VM in same VXLAN.

Environment:

1 - two hosts in Cluster

2. - NSX configured

3. - 4 VXLANs avaialable on both two hosts

4. - Two VMs in Same VXLAN each on diferent host

Tring to filter SSH between them - just for testing - and Distributed firewall does not filter it.

i have used next documentation - NSX 6 Documentation Center

Thanks

admin · ‎07-10-2014

Please confirm that both of your VMs have VMtools installed and running. DFW relies on VMtools to convert VC objects to their IP address representations.

Here's a bit more on the related topic, hopefully this helps:

http://telecomoccasionally.wordpress.com/2014/04/17/distributed-firewall-dfw-in-nsx-for-vsphere-and-...

View solution in original post

admin · ‎07-10-2014

Please confirm that both of your VMs have VMtools installed and running. DFW relies on VMtools to convert VC objects to their IP address representations.

Here's a bit more on the related topic, hopefully this helps:

http://telecomoccasionally.wordpress.com/2014/04/17/distributed-firewall-dfw-in-nsx-for-vsphere-and-...

plotniku · ‎07-11-2014

I did not know about that. i thought it was supposed to work

Do you guys have sum sort of documentation that explains NSX from inside?

admin · ‎07-13-2014

All I'm aware of that's accessible externally is listed here:

http://telecomoccasionally.wordpress.com/2014/04/06/good-nsx-resources/

Since there will be an expert-level certification, I expect training material will become available that would cover the system internals in detail. I'm afraid that the best answer I have at this moment. Maybe somebody who has a better one will chime in.