In order to access external network resources from internal Org VDC networks Source NAT (SNAT) rule must be created on the Edge Gateway which translates internal IP address to a sub-allocated IP address of a particular external interface.
The internal source IP address can be entered in these formats:
- Single IP address
- Range of IP addresses
- CIDR format
As you can see it is not possible to put ‘Any’ as it is with firewall rules configuration.
After investigating what would be the easiest option to use, this is what I found out:
In case where Edge Gateway is deployed by NSX Manager then it is possible to use following CIDR entry 0.0.0.0/0.
Unfortunately this is not working with Edge Gateway deployed by vShield Manager (vCNS) where Edge configuration fails with the following error:
…- java.util.concurrent.ExecutionException: com.vmware.vcloud.fabric.nsm.error.VsmException: VSM response error (15012): Invalid IP Address input ‘0.0.0.0/0’ for field ‘rules.natRulesDtos[4].originalAddress’.
– com.vmware.vcloud.fabric.nsm.error.VsmException: VSM response error (15012): Invalid IP Address input ‘0.0.0.0/0’ for field ‘rules.natRulesDtos[4].originalAddress’.
– VSM response error (15012): Invalid IP Address input ‘0.0.0.0/0’ for field ‘rules.natRulesDtos[4].originalAddress’.
The alternative is to use the following IP range: 0.0.0.1-255.255.255.253.
Tom Fojta's Blog 
This really helped me, thanks !
I don’t understand why VMware doesn’t let users to use “any” from vCD as this is accepted from vCNS :s