How to create a firewall rule

Virtual servers & datacenter / Copaco VMware Cloud / How to create a firewall rule

How to create a firewall rule 

Prerequisites to this guide:

 

  1. Login to your Copaco VMware Cloud portal

  2. Go to Networking => Edges

  3. Click on CONVERT TO ADVANCED


  4. Click on CONFIGURE SERVICES 



  5. Click on Firewall


  6. Click on the + to add a new rule

    You can hide the automatically created system rules by clicking on Show only user-defined rules


  7. Click on the newly created rule



  8. Rename the Rule by dubbel clicking on the New Rule and choose a new one

  9. Under Source and Destination you can enter an IP address or clicking on the "+" to choose a Virtual Network

    Adding by IP-address:
    Click on IP and enter an IP-address, this can be a single private/public IP address a subnet or an IP range

    Option 1: Single IP address




    Option 2: /28 CIDR Subnet:



    Option 3: IP range:



  10. Under Service you can Allow ANY service or add a specific protocol and destiantion port

    In this example we will add TC port 3389 for Remote Desktop
    Click under Service on "+"


    Protocol: Choose TCP
    Source Port: Leave this to any
    Destination Port: Enter 3389


    Click on KEEP


  11. Under Action you can choose to Accept or Deny the connection

    Click on the drop down icon and choose the desired Action




  12. You can enable logging on this firewall by checking Enable logging


  13. Click on Save changes in Top right corner

 

 

EXAMPLE 1: Allow Remote Desktop connection


Allow incoming port 4416 to Virtual Machine on Remote Desktop port 3389 (default)

The Firewall rule then looks like this:



Important, the service source port must be ANY: 
 

To only allow the client Office to connect to this VM,  set the source to the external IP-address of the client office:

 Also a NAT rule is needed to translate the 4416 to 3389, in the next article there is also an example.

 

Now you can continue with this article:

 

 

Related articles: