When configuring source or destination firewall rules, you can also choose the following attributes:
- VSE
- Internal
- External
VSE is chosen if you want to restrict traffic generated by the ESG. Internal and External are used to restrict traffic coming from either internal or uplink interfaces, and when you configure additional interfaces of either type, the corresponding firewall rule is automatically updated.
In addition to user-defined firewall rules, the ESG also provides the ability to create autogenerated rules, which are created by the ESG when you enable application services. You can control this setting using the following steps:
- Log in to the vSphere web client via a web browser.
- Navigate to Networking & Security ...