Skip to main content
Skip table of contents

How to create a firewall rule

How to create a firewall rule 

Prerequisites to this guide:


  1. Login to your Copaco VMware Cloud portal

  2. Go to Networking => Edges => Click on the edge

  3. Click on Services

  4. Click on Firewall

  5. Click on the + to add a new rule. You can hide the automatically created system rules by clicking on Show only user-defined rules

  6. Click on the newly created rule

  7. Rename the Rule by dubbel clicking on the New Rule and choose a new one

  8. Under Source and Destination you can enter an IP address or clicking on the "+" to choose a Virtual Network

    Adding by IP-address:Click on IP and enter an IP-address, this can be a single private/public IP address a subnet or an IP range
    Option 1: Single IP address

    Option 2: /28 CIDR Subnet:

    Option 3: IP range:

  9. Under Service you can Allow ANY service or add a specific protocol and destiantion port
    In this example we will add TC port 3389 for Remote Desktop
    Click under Service on "+"

    Protocol: Choose TCP
    Source Port: Leave this to any
    Destination Port: Enter 3389

    Click on KEEP

  10. Under Action you can choose to Accept or Deny the connection
    Click on the drop down icon and choose the desired Action

  11. You can enable logging on this firewall by checking Enable logging

  12. Click on Save changes in Top right corner


EXAMPLE 1: Allow Remote Desktop connection

Allow incoming port 4416 to Virtual Machine on Remote Desktop port 3389 (default)

The Firewall rule then looks like this:

Important, the service source port must be ANY:

To only allow the client Office to connect to this VM,  set the source to the external IP-address of the client office:

 Also a NAT rule is needed to translate the 4416 to 3389, in the next article there is also an example.


Now you can continue with this article:

Related articles:

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.