List Distributed Firewall Configuration

Retrieves the global elements and rules for the distributed firewall.

Prerequisites

1	Log in to vCloud Air as an administrator. See Log in to vCloud Air for information.
2	Create a login session with vCloud Director. See Create a Session for a Virtual Data Center in a Service for information.
3	Using the vCloud API, query vCloud Director for the ID of the distributed firewall for which you require firewall rules configuration details. See Querying the vCloud API for information.

Note

Configuring the distributed firewall is possible only when you have the vCloud Air Dedicated Cloud subscription service.

Procedure

♦

To get the details for the distributed firewall rules configuration for an edge gateway, issue the following request:

GET https://vchs.vmware.com/hybridity/api/firewall/Id/config

In the request header, include the OATH token and the Accept header that you obtained when creating a login session:

Accept: application/json
Content-Type: application/json
X-Vcloud-Authorization: "vcloud-auth-token"

If the request is successful, the server returns HTTP response code 200 and the details of the distributed firewall configuration.

Example: Request and Response to Get Distributed Firewall Configuration

Request Header – List the Distributed Firewall Configuration

GET https://vchs.vmware.com/hybridity/api/firewall/Id/config
Accept: application/json
Content-Type: application/json
X-Vcloud-Authorization: "d6eFLOqQYfuEn2MJTp7BQ2ISEO+ZYaEgTcqBy8wZQ6js="

Request body not required.

Response Body – List the Distributed Firewall Configuration

{
"timestamp" : 1454059459104,
"contextId" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
  "layer3Sections" : {
    "layer3Sections" : [ {
      "id" : 1004,
      "name" : "Default Section Layer3",
      "generationNumber" : "1453768399363",
      "contextId" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
      "rules" : [ {
        "name" : " ",
        "id" : 1008,
        "disabled" : false,
        "action" : "allow",
        "logged" : false,
        "notes" : "",
        "appliedToList" : {
          "appliedToList" : [ {
            "name" : "org-101-vdc-1",
            "value" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
            "type" : "Datacenter",
            "isValid" : true
          } ]
        },
        "sectionId" : 1004,
        "sources" : {
          "excluded" : false,
          "sourceList" : [ {
            "name" : "ops  networks",
            "value" : "c984cef5-39a3-317c-a221-72e15022b12a",
            "type" : "IPSet",
            "isValid" : true
          } ]
        },
        "destinations" : {
          "excluded" : false,
          "destinationList" : [ {
            "name" : "org-101-vdc-1",
            "value" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
            "type" : "Datacenter",
            "isValid" : true
          } ]
        },
        "services" : {
          "serviceList" : [ {
            "name" : "SSH",
            "value" : "a9648d0a-e549-31f0-8a6c-270f18990d0e",
            "type" : "Application",
            "isValid" : true
          }, {
            "name" : "HTTPS",
            "value" : "4d8ed2c4-896f-3b58-8371-fb16c977dcd2",
            "type" : "Application",
            "isValid" : true
          } ]
        },
        "direction" : "inout",
        "packetType" : "any"
      }, {
  "layer2Sections" : {
    "layer2Sections" : [ 
]
      "id" : 1005,
      "name" : "Default Section Layer2",
      "generationNumber" : "1453768399138",
      "contextId" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
      "rules" : [ {
        "name" : " ",
        "id" : 1009,
        "disabled" : false,
        "action" : "allow",
        "logged" : false,
        "notes" : "",
        "appliedToList" : {
          "appliedToList" : [ {
            "name" : "org-101-vdc-1",
            "value" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
            "type" : "Datacenter",
            "isValid" : true
          } ]
        },
        "sectionId" : 1005,
        "sources" : {
          "excluded" : false,
          "sourceList" : [ {
            "name" : "dummyNet",
            "value" : "d02aa701-9ef0-31c0-b63e-f5e988cf553d",
            "type" : "MACSet",
            "isValid" : true
          } ]
        },
        "destinations" : {
          "excluded" : false,
          "destinationList" : [ {
            "name" : "l2_VLAN3115_763",
            "value" : "410686c9-a29e-4cc9-9977-b4d00bed9a81",
            "type" : "Network",
            "isValid" : true
          } ]
        },
        "services" : {
          "serviceList" : [ {
            "name" : "SSH",
            "value" : "a9648d0a-e549-31f0-8a6c-270f18990d0e",
            "type" : "Application",
            "isValid" : true
          } ]
        },
        "direction" : "inout",
        "packetType" : "any"
      }, {
        "name" : "Default Rule",
        "id" : 1006,
        "disabled" : false,
        "action" : "allow",
        "logged" : false,
        "appliedToList" : {
          "appliedToList" : [ {
            "name" : "org-101-vdc-1",
            "value" : "72977c7d-2de6-4fda-a706-0f8d48ce1377",
            "type" : "Datacenter",
            "isValid" : true
          } ]
        },
        "sectionId" : 1005,
        "direction" : "inout",
        "packetType" : "any"
      } ]
  } ]  
},
  "generationNumber" : "1453768399363"
}