system services firewall policy show

Show firewall policies

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

The system services firewall policy show command displays information about firewall policies.

Parameters

{ [-fields <fieldname>, ...]
If you specify the -fields <fieldname>,... parameter, the command displays only the fields that you specify.
| [-instance ]}
Use this parameter to display all the fields for the specified policies.
[-vserver <vserver>] - Vserver Name
Use this parameter to display information only about the Vserver you specify.
[-policy <textpolicy_name>] - Policy
Use this parameter to display information about the policy you specify.
[-service <service>] - Service
Use this parameter to display information about the services you specify.
[-allow-list <IP Address/Mask>, ...] - Allowed IPs
Use this parameter to display information about the firewall policies that match the list of allowed IP addresses and netmasks you specify. The correct format for this parameter is address/netmask, similar to "192.0.2.128/25". Multiple address/netmask pairs should be separated with commas.
[-ipspace <text>] - IPspace
Use this parameter to display information only about the IPspace you specify.

Examples

The following example displays information about all firewall policies:
cluster1::> system services firewall policy show
Vserver Policy       Service    Allowed
------- ------------ ---------- -------------------
cluster1
        data
                     dns        0.0.0.0/0, ::/0
                     ndmp       0.0.0.0/0, ::/0
                     ndmps      0.0.0.0/0, ::/0
cluster1
        intercluster
                     ndmp       0.0.0.0/0, ::/0
                     ndmps      0.0.0.0/0, ::/0
cluster1
        mgmt
                     dns        0.0.0.0/0, ::/0
                     http       0.0.0.0/0, ::/0
                     https      0.0.0.0/0, ::/0
                     ndmp       0.0.0.0/0, ::/0
                     ndmps      0.0.0.0/0, ::/0
                     ntp        0.0.0.0/0, ::/0
                     snmp       0.0.0.0/0, ::/0
                     ssh        0.0.0.0/0, ::/0