Update Orgs.sddcs.networks.edges.firewall.config

Update Orgs.sddcs.networks.edges.firewall.config

Configure firewall for a management or compute gateway (NSX Edge).

Request
URI
PUT
https://vmc.vmware.com/vmc/api/orgs/{org}/sddcs/{sddc}/networks/4.0/edges/{edgeId}/firewall/config
COPY
Path Parameters
string
org
Required

Organization identifier.

string
sddc
Required

Sddc Identifier.

string
edgeId
Required

Edge Identifier.

Request Body
firewallConfig of type(s) application/json
Required 
{
    "firewallRules": {
        "firewallRules": [
            {
                "ruleType": "string",
                "description": "string",
                "ruleId": 0,
                "matchTranslated": false,
                "invalidApplication": false,
                "direction": "string",
                "statistics": {
                    "timestamp": 0,
                    "connectionCount": 0,
                    "byteCount": 0,
                    "packetCount": 0
                },
                "name": "string",
                "invalidSource": false,
                "loggingEnabled": false,
                "destination": {
                    "exclude": false,
                    "ipAddress": [
                        "string"
                    ],
                    "groupingObjectId": [
                        "string"
                    ],
                    "vnicGroupId": [
                        "string"
                    ]
                },
                "enabled": false,
                "application": {
                    "applicationId": [
                        "string"
                    ],
                    "service": [
                        {
                            "sourcePort": [
                                "string"
                            ],
                            "protocol": "string",
                            "port": [
                                "string"
                            ],
                            "icmpType": "string"
                        }
                    ]
                },
                "source": {
                    "exclude": false,
                    "ipAddress": [
                        "string"
                    ],
                    "groupingObjectId": [
                        "string"
                    ],
                    "vnicGroupId": [
                        "string"
                    ]
                },
                "action": "string",
                "invalidDestination": false,
                "ruleTag": 0
            }
        ]
    },
    "featureType": "string",
    "version": 0,
    "template": "string",
    "globalConfig": {
        "tcpAllowOutOfWindowPackets": false,
        "udpTimeout": 0,
        "ipGenericTimeout": 0,
        "tcpPickOngoingConnections": false,
        "tcpTimeoutOpen": 0,
        "tcpTimeoutClose": 0,
        "icmp6Timeout": 0,
        "dropIcmpReplays": false,
        "logIcmpErrors": false,
        "tcpSendResetForClosedVsePorts": false,
        "dropInvalidTraffic": false,
        "enableSynFloodProtection": false,
        "icmpTimeout": 0,
        "tcpTimeoutEstablished": 0,
        "logInvalidTraffic": false
    },
    "enabled": false,
    "defaultPolicy": {
        "action": "string",
        "loggingEnabled": false
    }
}
firewallRules
firewallRules
Optional

Ordered list of firewall rules.

string
featureType
Optional

featureType

integer As int64 As int64
version
Optional

Version number tracking each configuration change. To avoid problems with overwriting changes, always retrieve and modify the latest configuration to include the current version number in your request. If you provide a version number which is not current, the request is rejected. If you omit the version number, the request is accepted but may overwrite any current changes if your change is not in sync with the latest change.

string
template
Optional

template

firewallGlobalConfig
globalConfig
Optional

Global configuration applicable to all rules.

boolean
enabled
Optional

Value is true if feature is enabled. Default value is true. Optional.

firewallDefaultPolicy
defaultPolicy
Optional

Firewall default policy. Default is deny.

Authentication
This operation uses the following authentication methods.
Responses
204

No Content

Operation doesn't return any data structure

400

Bad request. Request object passed is invalid.

Operation doesn't return any data structure

403

Forbidden. Authorization header not provided.

Operation doesn't return any data structure

404

Not found. Requested object not found.

Operation doesn't return any data structure

On This Page
Edges Operations
POST
Add Orgs.sddcs.networks.edges.firewall.config.rules
POST
Add Orgs.sddcs.networks.edges.nat.config.rules
POST
Create Orgs.sddcs.networks.edges.dns.config
DELETE
Delete Orgs.sddcs.networks.cgws.l2vpn.config
DELETE
Delete Orgs.sddcs.networks.edges.dns.config
DELETE
Delete Orgs.sddcs.networks.edges.firewall.config
DELETE
Delete Orgs.sddcs.networks.edges.firewall.config.rules
DELETE
Delete Orgs.sddcs.networks.edges.ipsec.config
DELETE
Delete Orgs.sddcs.networks.edges.nat.config
DELETE
Delete Orgs.sddcs.networks.edges.nat.config.rules
GET
Get Orgs.sddcs.networks.cgws.l2vpn.config
GET
Get Orgs.sddcs.networks.edges
GET
Get Orgs.sddcs.networks.edges.dhcp.leaseinfo
GET
Get Orgs.sddcs.networks.edges.dns.config
GET
Get Orgs.sddcs.networks.edges.dns.statistics
GET
Get Orgs.sddcs.networks.edges.firewall.config
GET
Get Orgs.sddcs.networks.edges.firewall.config.rules
GET
Get Orgs.sddcs.networks.edges.firewall.statistics
GET
Get Orgs.sddcs.networks.edges.ipsec.config
GET
Get Orgs.sddcs.networks.edges.ipsec.statistics
GET
Get Orgs.sddcs.networks.edges.l2vpn.config.statistics
GET
Get Orgs.sddcs.networks.edges.nat.config
GET
Get Orgs.sddcs.networks.edges.peerconfig
GET
Get Orgs.sddcs.networks.edges.statistics.dashboard.firewall
GET
Get Orgs.sddcs.networks.edges.statistics.dashboard.interface
GET
Get Orgs.sddcs.networks.edges.statistics.dashboard.ipsec
GET
Get Orgs.sddcs.networks.edges.statistics.interfaces
GET
Get Orgs.sddcs.networks.edges.statistics.interfaces.internal
GET
Get Orgs.sddcs.networks.edges.statistics.interfaces.uplink
GET
Get Orgs.sddcs.networks.edges.status
GET
Get Orgs.sddcs.networks.edges.vnics
PUT
Update Orgs.sddcs.networks.cgws.l2vpn.config
PUT
Update Orgs.sddcs.networks.edges.dns.config
PUT
Update Orgs.sddcs.networks.edges.firewall.config
PUT
Update Orgs.sddcs.networks.edges.firewall.config.rules
PUT
Update Orgs.sddcs.networks.edges.ipsec.config
PUT
Update Orgs.sddcs.networks.edges.nat.config
PUT
Update Orgs.sddcs.networks.edges.nat.config.rules