firewallGlobalConfig
firewallGlobalConfig
Global configuration applicable to all rules.
JSON Example
{
"tcpTimeoutOpen": 0,
"logIcmpErrors": false,
"icmp6Timeout": 0,
"tcpSendResetForClosedVsePorts": false,
"dropInvalidTraffic": false,
"icmpTimeout": 0,
"ipGenericTimeout": 0,
"logInvalidTraffic": false,
"tcpTimeoutClose": 0,
"tcpTimeoutEstablished": 0,
"tcpPickOngoingConnections": false,
"udpTimeout": 0,
"enableSynFloodProtection": false,
"dropIcmpReplays": false,
"tcpAllowOutOfWindowPackets": false
}
integer As int32
As int32
tcpTimeoutOpen
Optional
TCP timeout open.
boolean
logIcmpErrors
Optional
Log icmp errors.
integer As int32
As int32
icmp6Timeout
Optional
ICMP6 timeout.
boolean
tcpSendResetForClosedVsePorts
Optional
Send TCP reset for closed NSX Edge ports.
boolean
dropInvalidTraffic
Optional
Drop invalid traffic.
integer As int32
As int32
icmpTimeout
Optional
ICMP timeout.
integer As int32
As int32
ipGenericTimeout
Optional
IP generic timeout.
boolean
logInvalidTraffic
Optional
Log invalid traffic.
integer As int32
As int32
tcpTimeoutClose
Optional
TCP timeout close.
integer As int32
As int32
tcpTimeoutEstablished
Optional
TCP timeout established.
boolean
tcpPickOngoingConnections
Optional
Pick TCP ongoing connections.
integer As int32
As int32
udpTimeout
Optional
UDP timeout close.
boolean
enableSynFloodProtection
Optional
Protect against SYN flood attacks by detecting bogus TCP connections and terminating them without consuming firewall state tracking resources. Default : false
boolean
dropIcmpReplays
Optional
Drop icmp replays.
boolean
tcpAllowOutOfWindowPackets
Optional
Allow TCP out of window packets.