Distributed Firewall Traffic Flow

Steps as shown in the above diagram:

1. Write Rules in the Distributed Firewall (DFW) config in vCD
2. Upon Saving, vCD pushes rules to the applicable Hypervisors
   1. If your rule references IPs used by VM1 and VM2 only, then the rule is pushed only to Hypervisor A.
   2. If your rule references IPs used by VM2 and VM4, then appropriate rule(s) are pushed to Hypervisor A and B
3. Traffic between VM 1 and VM 2 is shown - Remember that DFW rules contain "in," "out," and "in/out" directionality
4. Traffic between VM 2, VM4, and some external IP