Learn how to permanently delete a NAT Gateway firewall rule in Vultr.
Deleting a firewall rule removes the traffic control policy immediately and stops the rule from affecting traffic through the NAT Gateway.
Follow this guide to delete a NAT Gateway subscription firewall rule using the Vultr Customer Portal, API, CLI, or Terraform.
Navigate to Products, expand the Network drop-down and select VPC Networks.
Select your target VPC Network with NAT Gateway connectivity.
Scroll to the NAT Firewall section.
Locate your target firewall rule in the list.
Click the Delete icon (trash icon) for the rule you want to remove.
A confirmation dialog appears with the message "Delete Firewall Rule?" and warns that "This action cannot be undone. This will permanently delete this firewall rule."
Click Delete Firewall Rule to confirm deletion, or click Cancel to abort.
Send a GET request to the List VPCs endpoint to retrieve available VPCs.
$ curl "https://api.vultr.com/v2/vpcs" \
-X GET \
-H "Authorization: Bearer ${VULTR_API_KEY}"
The output displays all VPCs in your account. Note the id field for the target VPC.
Send a GET request to the List NAT Gateway subscriptions endpoint to retrieve the gateway ID. Replace VPC_ID with the ID from the previous step.
$ curl "https://api.vultr.com/v2/vpcs/VPC_ID/nat-gateway" \
-X GET \
-H "Authorization: Bearer ${VULTR_API_KEY}"
The output displays NAT Gateway subscriptions for the VPC. Note the id field for the target gateway.
Send a GET request to the List NAT Gateway Firewall Rules endpoint to retrieve firewall rule IDs. Replace VPC_ID and NAT_GATEWAY_ID with your values.
$ curl "https://api.vultr.com/v2/vpcs/VPC_ID/nat-gateway/NAT_GATEWAY_ID/global/firewall-rules" \
-X GET \
-H "Authorization: Bearer ${VULTR_API_KEY}"
The output displays all firewall rules for the gateway. Each rule includes an id, port, protocol, subnet, and notes field. Note the id field for the rule you want to delete.
Send a DELETE request to the Delete NAT Gateway Firewall Rule endpoint. Replace VPC_ID, NAT_GATEWAY_ID, and FIREWALL_RULE_ID with your values.
$ curl "https://api.vultr.com/v2/vpcs/VPC_ID/nat-gateway/NAT_GATEWAY_ID/global/firewall-rules/FIREWALL_RULE_ID" \
-X DELETE \
-H "Authorization: Bearer ${VULTR_API_KEY}"
The API returns an HTTP 204 status code with no response body when the deletion succeeds. The rule is removed immediately and no longer affects traffic through the gateway.
List all VPCs in your account to retrieve the VPC ID.
$ vultr-cli vpc list
List NAT Gateway subscriptions for the VPC to retrieve the NAT Gateway ID.
$ vultr-cli vpc nat-gateway list <VPC_ID>
List firewall rules for the NAT Gateway.
$ vultr-cli vpc nat-gateway firewall-rule list <VPC_ID> <NAT_GATEWAY_ID>
Delete the firewall rule.
$ vultr-cli vpc nat-gateway firewall-rule delete <VPC_ID> <NAT_GATEWAY_ID> <FIREWALL_RULE_ID>
The firewall rule is deleted immediately and no longer affects traffic through the gateway.
Remove the vultr_nat_gateway_firewall_rule resource block from your Terraform configuration file.
Apply the configuration to delete the resource:
$ terraform apply
Terraform detects the removed resource and deletes the firewall rule from your NAT Gateway.
Alternatively, destroy a specific resource using the -target flag:
$ terraform destroy -target=vultr_nat_gateway_firewall_rule.https