Disabling the Distributed Cloud Firewall Feature

If you disable Distributed Cloud Firewall (DCF), the following occurs:

  • Features are disabled:

    • Enforcement on PSF Gateways (card is removed from the Settings tab)

    • Enforcement on External Connections (card is removed from the Settings tab)

is removed from the Settings tab) DCF for Kubernetes SmartGroups WebGroups ExternalGroups * Tab behavior changes: The Policies tab and Monitor tab become unavailable and show the Distributed Cloud Firewall Begin splash screen. The Detected Intrusions tab will only show historical data. The Egress > Overview tab does not display (specific to Egress Security Score). ** The Egress Security Score functionality is removed from the Egress VPC/VNets tab (if using Controller 8.0).

To disable the Distributed Cloud Firewall (DCF) feature:

  1. To disable the DCF feature, navigate to Security > Distributed Cloud Firewall > Settings.

  2. Click Disable on the Distributed Cloud Firewall card. You are prompted that disabling the feature will remove enforcement of DCF policies across your Aviatrix-managed environment.

  3. Click Disable to confirm.

  4. Clean up any remaining DCF rules:

    1. On the Security > Distributed Cloud Firewall > Settings tab, click Clean up Policies on the Distributed Cloud Firewall card.

    2. In the Clean Up Polices dialog, you are prompted that cleaning up policies means all existing DCF rules will be removed, and that you will not be able to recover them.

    3. Select the I understand that this action cannot be undone checkbox and click Clean Up to confirm.