doctl compute firewall get

Go to Navigation


doctl compute firewall get <id> [flags]




Retrieves information about an existing cloud firewall, including:

  • The firewall’s UUID
  • The firewall’s name
  • The status of the firewall. Possible values: waiting, succeeded, failed.
  • The firewall’s creation date, in ISO8601 combined date and time format.
  • Any pending changes to the firewall. Possible values:droplet_id, removing, status. When empty, all changes have been successfully applied.
  • The inbound rules for the firewall
  • The outbound rules for the firewall
  • The IDs of Droplets assigned to the firewall
  • The tags assigned to the firewall


The following example retrieves information about the cloud firewall with the ID f81d4fae-7dec-11d0-a765-00a0c91e6bf6:

doctl compute firewall get f81d4fae-7dec-11d0-a765-00a0c91e6bf6


Option Description
--format Columns for output in a comma-separated list. Possible values: ID, Name, Status, Created, InboundRules, OutboundRules, DropletIDs, Tags, PendingChanges.
--help , -h Help for this command
--no-header Return raw data with no headers
Default: false
Command Description
doctl compute firewall Display commands to manage cloud firewalls

Global Flags

Option Description
--access-token, -t API V2 access token
--api-url, -u Override default API endpoint
--config, -c Specify a custom config file
  • macOS: ${HOME}/Library/Application Support/doctl/config.yaml
  • Linux: ${XDG_CONFIG_HOME}/doctl/config.yaml
  • Windows: %APPDATA%\doctl\config.yaml
--context Specify a custom authentication context name
--http-retry-max Set maximum number of retries for requests that fail with a 429 or 500-level error
Default: 5
--http-retry-wait-max Set the minimum number of seconds to wait before retrying a failed request
Default: 30
--http-retry-wait-min Set the maximum number of seconds to wait before retrying a failed request
Default: 1
--interactive Enable interactive behavior. Defaults to true if the terminal supports it (default false)
Default: false
--output, -o Desired output format [text|json]
Default: text
--trace Show a log of network activity while performing a command
Default: false
--verbose, -v Enable verbose output
Default: false