nsxfirewallrule
nsxfirewallrule
Firewall Rule
JSON Example
{
"ruleType": "string",
"description": "string",
"ruleId": 0,
"matchTranslated": false,
"invalidApplication": false,
"direction": "string",
"statistics": {
"timestamp": 0,
"connectionCount": 0,
"byteCount": 0,
"packetCount": 0
},
"name": "string",
"invalidSource": false,
"loggingEnabled": false,
"destination": {
"exclude": false,
"ipAddress": [
"string"
],
"groupingObjectId": [
"string"
],
"vnicGroupId": [
"string"
]
},
"enabled": false,
"application": {
"applicationId": [
"string"
],
"service": [
{
"sourcePort": [
"string"
],
"protocol": "string",
"port": [
"string"
],
"icmpType": "string"
}
]
},
"source": {
"exclude": false,
"ipAddress": [
"string"
],
"groupingObjectId": [
"string"
],
"vnicGroupId": [
"string"
]
},
"action": "string",
"invalidDestination": false,
"ruleTag": 0
}
string
ruleType
Optional
Identifies the type of the rule. internal_high or user.
string
description
Optional
Description for the rule
integer As int64
As int64
ruleId
Optional
Identifier for the rule.
boolean
matchTranslated
Optional
Defines the order of NAT and Firewall pipeline. When false, firewall happens before NAT. Default : false
boolean
invalidApplication
Optional
invalidApplication
string
direction
Optional
Direction. Possible values in or out. Default is 'any'.
string
name
Optional
Name for the rule.
boolean
invalidSource
Optional
invalidSource
boolean
loggingEnabled
Optional
Enable logging for the rule.
boolean
enabled
Optional
Enable rule.
string
action
Optional
Action. Values : accept, deny
boolean
invalidDestination
Optional
invalidDestination
integer As int64
As int64
ruleTag
Optional
Rule tag. Used to specify user-defined ruleId. If not specified NSX Manager will generate ruleId.
Property Of