hello everyone,
we create a VApp in vCenter, and we want to deny all the Ingress to the VAPP and allow all the Egress from the VApp.
so we add some rule in vShield App Firewall, all the rules were created L2 Rule.
ANY -> VAPP1 -> any deny
VAPP1 ->ANY -> any allow
but our DHCP server and DNS server were blocked too, so the VM in the VApp cannot get the ip address automatic.
so we create rule to allow DHCP service and DNS in the top.
ANY -> VAPP1 -> dhcp,dns allow
but now take no effect
can someone give me some help?
thanks very much.