On ESX 3.5, used iptables to verify the actual configuration.

Firewall starts for chain INPUT OUTPUT with any-rule, ACCEPT all -- 0.0.0.0/0 0.0.0.0/0\

Firewall is enabled for incoming and outgoing. Does this mean all traphic is passed ?

esxcfg-firewall provides additionally in and out status. What do these columns mean ?

I'm looking for documentation on esxcfg-firewall explaining in / out columns.

iptables -nL

Chain INPUT (policy DROP)

target prot opt source destination

ACCEPT all -- 0.0.0.0/0 0.0.0.0/0

valid-tcp-flags tcp -- 0.0.0.0/0 0.0.0.0/0

valid-source-address ! udp -- 0.0.0.0/0 0.0.0.0/0

valid-source-address-udp udp -- 0.0.0.0/0 0.0.0.0/0

valid-source-address tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02

icmp-in icmp -- 0.0.0.0/0 0.0.0.0/0

ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED

esxcfg-firewall -q

Chain INPUT (policy DROP 7 packets, 911 bytes)

pkts bytes target prot opt in out source destination

185 52786 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0

151 22108 valid-tcp-flags tcp -- * * 0.0.0.0/0 0.0.0.0/0

151 22108 valid-source-address ! udp -- * * 0.0.0.0/0 0.0.0.0/0

81 28560 valid-source-address-udp udp -- * * 0.0.0.0/0 0.0.0.0/0

3 168 valid-source-address tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02