Removing outbound firewall rules
To remove the rule
0.0.0.0:any:0:Allow all, which allows all outbound traffic, use the vinfra cluster network set command with the
--del-outbound-allow-list option. For example:
# vinfra cluster network set Public --del-outbound-allow-list "0.0.0.0:any:0:Allow all"
In this case, all attempts to establish connections from the cluster to external endpoints will be blocked.
When restricting outbound traffic, it is recommend to modify the default outbound rules to use specific IP addresses or subnets, according to your network infrastructure and security policies.