NSX-T Data Center REST API

Details of NSX firewall rules of cloud virtual machine

Return the NSX firewall rules of an agentless cloud virtual machine within the given cloud network
and the details/status of each rule. VMs with NSX agent do not have the NSX rules populated.
Rule errors are populated if failed to realize for the instance.In AWS, instance id is same as instance guid.
In Azure, instance guid refers to the global unique identifier of the instance.

Request:

Method:

GET

URI Path(s):

/api/v1/csm/virtual-machines/{virtual-machine-id}/firewall-rules

Request Headers:

n/a

Query Parameters:

NsxFirewallRulesListRequestParameters+

Name	Description	Type	Notes
cursor	Opaque cursor to be used for getting next page of records (supplied by current result page)	string
included_fields	Comma separated list of fields that should be included in query result Note - this parameter currently only works when used with the search APIs /policy/api/v1/search/query and /policy/api/v1/search/dsl. It is ignored for other list APIs.	string
page_size	Maximum number of results to return in this page (server may return fewer)	integer	Minimum: 0 Maximum: 1000 Default: "1000"
sort_ascending		boolean
sort_by	Field by which records are sorted	string
status	NSX firewall rule realization status on the cloud Optional filter parameter to the NSX firewall rules of a cloud VM based on it's realization status SUCCEEDED - NSX firewall rule is successfully realized on the cloud FAILED - NSX firewall rule has failed to realized on the cloud and has errors	string	Enum: SUCCEEDED, FAILED

Request Body:

n/a

Example Request:

GET https://<nsx-csm>/api/v1/csm/virtual-machines/i-027c0b32cbe631ec9/firewall-rules

Successful Response:

Response Code:

200 OK

Response Headers:

Content-type: application/json

Response Body:

NsxFirewallRulesListResult+

Name	Description	Type	Notes
_links	References related to this resource The server will populate this field when returing the resource. Ignored on PUT and POST.	array of ResourceLink	Readonly
_schema	Schema for this resource	string	Readonly
_self	Link to this resource	SelfResourceLink	Readonly
cursor	Opaque cursor to be used for getting next page of records (supplied by current result page)	string	Readonly
result_count	Count of results found (across all pages), set only on first page	integer	Readonly
results	NSX firewall rules List Result List of NSX firewall rules	array of NsxFirewallRule	Readonly
sort_ascending	If true, results are sorted in ascending order	boolean	Readonly
sort_by	Field by which records are sorted	string	Readonly

Example Response:

{ "results" : [ { "id" : "1026", "section_id" : "b6b1219b-g76d-456g-8012-ebbdg9c4c497", "direction" : "IN_OUT", "priority" : 100, "sources" : [ { "target_id" : "a6a1219a-f76c-456f-8012-daacf9b4b497", "target_display_name" : "web-vms" } ], "destinations" : [ { "target_id" : "d79460ce-3404-4424-a931-3f70a2e39aee", "target_display_name" : "app-vms" } ], "services" : [ { "service" : { "l4_protocol" : "TCP", "source_ports" : [], "destination_ports: ["1024"] } } ], "action" : "ALLOW", "error_details" : { "error_id" : "1234", "error_message" : "NSX stateless rules are not supported" } }, { "id" : "1027", "section_id" : "", "direction" : "IN", "priority" : 1000, "sources" : [ { "target_id" : "d79460ce-3404-4424-a931-3f70a2e39aee", "target_display_name" : "app-vms" } ], "destinations" : [ { "target_id" : "a6a1219a-f76c-456f-8012-daacf9b4b497", "target_display_name" : "web-vms" } ], "services" : [ { "service" : { "l4_protocol" : "TCP", "source_ports" : [], "destination_ports: ["464"] } } ], "action" : "DENY", "error_details" : {} } ] }

NSX-T Data Center REST API

Details of NSX firewall rules of cloud virtual machine

Request:

NsxFirewallRulesListRequestParameters (schema)

Example Request:

Successful Response:

NsxFirewallRulesListResult (schema)

Example Response:

Required Permissions:

Feature:

Additional Errors: