Skip to main content

Firewall

This guide explains how to troubleshoot firewall related aspects of the Anapaya appliances.

Current configuration and state

Get the current firewall configuration:

appliance-cli get config -f body.config.firewall

Get the current firewall state of the appliance:

  • list all tables and counters

    appliance-cli get firewall

  • list input chain

    appliance-cli get firewall/tables/appliance/chains/default_input

  • list forward chain

    appliance-cli get firewall/tables/appliance/chains/default_forward

  • list counters

    appliance-cli get firewall -f 'body.tables[name == appliance].counters'

    or

    nft list counters