Tag: #DFW

VMware NSX – Time Based Firewall

Welcome Back !!

In previous blog we discussed about NSX Identity firewall also referred as IDFW, Today we will talk about Time based firewall and implement one of the use-case of it.

With Time base firewall rule, VMware NSX security administrator can manage traffic based on time window, which means a firewall rule will be active only for certain period.

One of the use-case can be, you have outsourced some maintenance work to team, who will be working on certain systems only during off business hours only, after that access will be revoked.

In this blog we will be discussing about everything you need to know about Time based Firewall like:

  • Key Points to keep in mind while using this feature.
  • Prerequisites.
  • Implementation of a use-case.
Continue reading VMware NSX – Time Based Firewall

Troubleshooting NSX DFW via Live packet capture on ESXi host

Background : Live packet capture plays an important role while troubleshooting NSX distributed firewall, Recently I completed one of the micro-segmentation implementation in brownfield environment, added all required flows for the applications & made default rule “DENY” at the end during maintenance window.

One of the application owner reported that “XYZ” application has stopped working, with live packet capture we got the actual insight of packet flow & service ports.

I thought to document the usual commands & packet capture points for easy future reference, You may go through the same below.

Continue reading Troubleshooting NSX DFW via Live packet capture on ESXi host