List effective firewall rules for VMs with NSX-T

The distributed firewall enforces firewall rules on each vNic of each VM. To find which rules are effectively enforced on a VM the following commands can be used on the transport node (hypervisor) where the virtual machine is running.

For ESXi

To access the list of firewall rules we first need to find the name of the dvfilter used on the VM's network adapter. Use the following command to access the full list:



Set NSX-T web UI and CLI timeout

Configure CLI timeout

The NSX-T Manager appliance shell is configured with a default timeout of 600 seconds . This timeout can be changed from the NSX Manager Command Line Interface. Access the NSX Manager CLI through the console or through SSH. With the following command you can retrieve the current setting of the CLI timeout:

get cli-timeout

To configure the timeout use the following command:

set cli-timeout <seconds>

Follow us on LinkedIn




Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer