I am completely stupid, I fiddled with firewall settings of VCSA and now I am locked out. What do I do?
Don’t worry, it can be fixed. But first, we need to get in. Since you are locked out of the web interface, you will need to use the Shell. Log in to the host, where the VCSA virtual machine resides and open up the console.
Press ALT + F1 , write shell and hit ENTER. Fill in your root credentials.
Use this command to list all rules:
iptables -L --line-numbers | more
Your firewall rules are listed under “Chain inbound”, note their numbers.
Now delete the rule(s), which are preventing you to connect to the server with this command (this example deletes rule number 2):
iptables -D inbound 2
The change should have immediate effect, so you can try to ping the server and see if it worked.
If this fix worked, you should login via web interface, which is now accessible, and delete firewall rules from there, or they will activate again after reboot.