Learn how to deploy the VM-Series firewall on VMware
After completing the configuration on Panorama,
perform the following procedure to launch the VM-Series firewall
in your NSX-T Data Center.
Log in to NSX-T Manager.
Advanced Networking &
matches the service definition to be deployed.
Select the VM-Series firewall image from the drop-down
in the Registered Service entry.
under the registered
service for the service definition you want to use to launch the
Enter the Partner Service details. This information tells
NSX-T Manager which Partner Service and logical router to use when
deploying the VM-Series firewall.
Enter a descriptive
for your VM-Series firewall.
NSX-T Manager prepopulates the
field. Selecting a Partner Service populates
and select a tier-0 or tier-1 router. NSX-T Manager attaches the
VM-Series firewall to the selected router and redirects traffic
passing through that router to the VM-Series firewall for inspection.
You must select a router with no service insertion attached.
Configure resource and storage settings.
The compute manager is the vCenter server managing your datacenter.
. You can deploy
the VM-Series firewall on any cluster that does not include any
Edge Transport Nodes.
) Select the Resource Pool if you
have created any on vCenter server.
your VM-Series firewall—Standalone or High Availability. If you
have an edge node cluster and select High Availability, NSX-T Manager
will deploy an additional VM-Series firewall on the standby edge
node in addition to the firewall deployed on the active edge node.
or Block. The failure policy defines how NSX-T Manager handles traffic
that is directed to the VM-Series firewall if the firewall becomes
for the VM-Series
firewall management port.
If you are deploying the VM-Series firewall in HA
mode, repeat the previous step for secondary firewall instance.
Click on the
and select a deployment template. Choosing a deployment template
automatically populates the template properties.