NancyChiang
Contributor
Contributor

custom firewall setting in ESXI7.0 operation not permitted

Jump to solution


Hi Sir,
I follow below rule want to change /etc/vmware/firewall/service.xml, but this still not working.
https://kb.vmware.com/s/article/2008226
Could you kindly help, we want to custom firewall setting in ESXI7.0.

In ESXi 7.0+ access to the above files is restricted.

To work around this you can do the following
Copy the file to a datastore on the host.
Make the required changes to the file
In the /etc/rc.local.d/local.sh file add the command to copy and replace the file needed.
In order to force this command to persist across reboots of the ESXi server host, the command has to be added manually to the /etc/rc.local.d/local.sh file on the ESXi server.
Note: The correct way to open up ports is through a partner-created VIB to open the ports or change the files needed.

Tags (2)
0 Kudos
1 Solution

Accepted Solutions
berndweyand
Expert
Expert

dont modify the service.xml - just place your own firewall as xml file into the firewall folder

place the xml to a datastore, copy it via local.sh to /etc/vmare/firewall and refresh firewall with esxcli network firewall refresh

 

View solution in original post

0 Kudos
2 Replies
berndweyand
Expert
Expert

dont modify the service.xml - just place your own firewall as xml file into the firewall folder

place the xml to a datastore, copy it via local.sh to /etc/vmare/firewall and refresh firewall with esxcli network firewall refresh

 

0 Kudos
NancyChiang
Contributor
Contributor

Many thanks, it's work now!!!😀

0 Kudos