Showing active firewall rule sets
You can see active firewall rule sets by using the show firewall interface command in operational mode and specifying the name of an interface. If no interface is specified, then all firewall rule sets for all interfaces are displayed.
The following example shows how to display information for all interfaces.
vyatta@R1:~$ show firewall
---------------------------------------
Rulesets Information: Firewall
---------------------------------------
--------------------------------------------------------------------------------
Firewall "fw_1":
Active on (dp0p192p1, in)
rule action proto packets bytes
---- ------ ----- ------- -----
1 allow tcp 0 0
condition - stateful proto tcp flags S/FSRA all
8 allow any 0 0
condition - stateful to 20.20.20.0/24