VMware NSX 4.2.1: Rule Matching Issues with vDefend Gateway Firewall
25230
08 August 2025
07 December 2024
Dear Broadcom Customer:
The purpose of this Critical Alert is to inform you of a potential problem that has been recently identified with VMware NSX 4.2.1. Please read the information provided below and follow the instructions in order to avoid being impacted by this problem.
PRODUCT(S) AFFECTED: VMware NSX 4.2.1 and 4.2.1.1
PROBLEM DESCRIPTION:
Incorrect gateway firewall rule matched in certain configurations
SYMPTOMS:
Traffic passing through vDefend Gateway Firewall may hit an incorrect firewall rule. Depending on the rule hit, traffic may pass through or get dropped.
IMPACT: Irrespective of the configured rule, traffic is incorrectly allowed or dropped.
WORKAROUND: None. Refer to KB Article 382935 for more details
PROBLEM RESOLUTION:
This issue is resolved in NSX 4.2.1.2 and later releases.
Thank you,
Broadcom Support Team