Search Queries for NSX Firewall
Rules
You can search for NSX Firewall rules in
VMware Aria
Operations for Networks
.Search Query | Description |
|---|---|
VM where incoming rules.Source Any
| View rules with any source (can combine with a specific port).
|
Firewall rule where action = allow and service any =
true
| View firewall rules
that allow any ports. |
Firewall Rule Masked Alert
| View the list of unused firewall rules. |
New firewall rules in last 24 hours
| View the firewall rules created in the last 24 hours. |
New firewall rules in last 7 days
| View the firewall rules created in the last 7 days. |
New firewall rules in last 30 days
| View the firewall rules created in the last 30 days. |
Firewall rule where flow is not set
| View the list of all inactive firewall rules. |
Flow group by firewall rule
| View the count of flows hitting each firewall rule. |
Security group where Indirect Incoming Rules is not set
and Indirect Outgoing Rules is not set and Direct Incoming Rules
is not set and Direct Outgoing Rules is not set
| View the security group that is not used. |
Ipset where Indirect Incoming Rules is not set and
Indirect Outgoing Rules is not set and Direct Incoming Rules is
not set and Direct Outgoing Rules is not set
| View the IPSet that is not used. |
Flow where rule id in (1011, 1012, 1013)
| Flows hitting a specific rule ID. |
Flow where application = app1
| Flows hitting the application. |
- Unused firewall rules
- Firewall rule Masking rule alert