DigitalOcean Cloud Firewalls are a network-based, stateful firewall service for Droplets provided at no additional cost. Cloud firewalls block all traffic that isn’t expressly permitted by a rule.
The DigitalOcean API lets you manage DigitalOcean resources programmatically using conventional HTTP requests. All the functionality available in the DigitalOcean Control Panel is also available through the API.
You can use the API to create, delete, and manage cloud firewalls.
doctl is a command-line interface for the DigitalOcean API and supports many of the same actions.
doctl supports managing firewalls from the command line. See the doctl documentation or use doctl compute firewall --help for more information.