Scribd
Upload
43 views

83 Fundamental+CLI+Commands

The document lists various fundamental CLI commands for checking system status, hardware performance, memory usage, session tables, interfaces, ARP tables, routing tables, VPN tunnels, packet counters, and troubleshooting diagnostics. It also provides examples of basic CLI configuration commands for setting the hostname, interfaces, DNS, static routes, and enabling packet capture.

Uploaded by

Ssalar Hadad
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
43 views

83 Fundamental+CLI+Commands

The document lists various fundamental CLI commands for checking system status, hardware performance, memory usage, session tables, interfaces, ARP tables, routing tables, VPN tunnels, packet counters, and troubleshooting diagnostics. It also provides examples of basic CLI configuration commands for setting the hostname, interfaces, DNS, static routes, and enabling packet capture.

Uploaded by

Ssalar Hadad
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Fundamental CLI Commands:

Commands Description
get sys status Check the system status
get system performance status Check the hardware performance
get system performance top Check the hardware performance
get hardware memory Displays information about memory
diag sys session full-stat Check the session table of the firewall
diag sys session list Check the session table of the firewall
get system session status Displays total number of sessions
get system interface physical Check the interface settings
diagnose hardware deviceinfo nic internal Check the interface settings
get system arp Check the ARP Table
execute clear system arp table Clear ARP Table Entries
get router info routing-table all Check the Routing Table
get router info routing-table details Check the matching route
192.168.2.0
diag vpn tunnel up phase2-name phase1- Change the tunnel state
name
diag vpn tunnel down phase2-name
phase1-name
diagnose vpn tunnel list name myphase1 Check the tunnel state
diag vpn tunnel dumpsa
diagnose vpn tunnel stat
diagnose vpn ipsec status Check packet counters for the tunnel
diag vpn tunnel list
diagnose sniffer packet Tshoot Diagnose Commands
diagnose sniffer packet any
diagnose sniffer packet any none
show full-configuration Check Full Commands List
execute reboot Reboot FortiGate Firewall
get router info routing-table all Display Routing Table details
diagnose firewall proute list
execute ping Send Ping packets
show system dns Displays configured DNS servers

Page | 1 Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717
Basic CLI Configuration Commands:

Configure Hostname
config system global
set hostname FG-FW
end
Configure Interface
config system interface
edit port2
set allowaccess ping
set ip 192.168.1.100/24
set alias LAN
Configure DNS
config system dns
set primary 8.8.8.8
set secondary 1.1.1.1
end
Configure Route
config router static
edit 1
set dst 0.0.0.0/0
set gateway 192.168.114.2
set distance 10
set device port1
end
Configure Packet Capture
config firewall policy
edit 1
set capture-packet enable
end

Page | 2 Created by Ahmad Ali E-Mail: [email protected] , Mobile: 056 430 3717

You might also like