Altering the security level for the service console is a two-part process: determining the service console firewall security level and resetting the service console firewall setting. To prevent unnecessary steps, always check the firewall setting before you change it.

1

Log in to the service console and acquire root privileges.

2

Use the following two commands to determine whether incoming and outgoing traffic is blocked or allowed.

esxcfg-firewall -q incoming
esxcfg-firewall -q outgoing

Interpret the results according to Service Console Firewall Security Levels.

Service Console Firewall Security Levels

Command Line Response

Security Level

Incoming ports blocked by default.

Outgoing ports blocked by default.

High

Incoming ports blocked by default.

Outgoing ports not blocked by default.

Medium

Incoming ports not blocked by default.

Outgoing ports not blocked by default.

Low