View a List of Timestamps Identifying App Firewall Rule Set Changes
You can view a list of timestamps marking firewall rule set changes for a specific container. To view the rule
set according to a specific timestamp, see "View a Previous Firewall Rule Set by Timestamp" on page 57.
Example 6-6. View a List of Firewall Rule Sets by Timestamps
Request:
GET <vshield_manager-uri>/api/1.0/zones/<container-moid>/firewall/snapshots
Example:
GET /api/1.0/zones/datacenter-4361/firewall/snapshots HTTP/1.1
Host: localhost
Authorization: Basic YWRtaW46ZGVmYXVsdA==
View a Previous Firewall Rule Set by Timestamp
You can view a historical rule set by its timestamp. To view the list of timestamps, see "View a List of
Timestamps Identifying App Firewall Rule Set Changes" on page 57.
Example 6-7. View a Firewall Rule Set by Timestamp
Request:
GET <vshield_manager-uri>/api/1.0/zones/<container-moid>/firewall/
Example:
GET /api/1.0/zones/datacenter-4361/firewall/snapshot/1274872770000 HTTP/1.1
Host: localhost
Authorization: Basic YWRtaW46ZGVmYXVsdA==
Revert to a Previous Firewall Rule Set
You can revert to a previous firewall rule set by specifying the appropriate container and timestamp.
Example 6-8. Revert to a Previous Firewall Rule Set
Request:
PUT <vshield_manager-uri>/api/1.0/zones/<container-moid>/firewall/snapshot/<timestamp>
Example:
PUT /api/1.0/zones/datacenter-4361/firewall/snapshot/1274872770000 HTTP/1.1
Host: localhost
Authorization: Basic YWRtaW46ZGVmYXVsdA==
VMware, Inc.
exclude="false"/><SourcePorts>ANY</SourcePorts><Application
type="UNICAST">SSH</Application><DestinationPorts>22</DestinationPorts><Protocol>T
CP</Protocol><Action>DENY</Action><Log>false</Log><Notes></Notes></Rule></RuleSet>
</vshieldZonesFirewallConfiguration>
snapshot/<snapshot-timestamp>
Chapter 6 vShield App Management
57