Category:Check Point -> Security Appliances
To enable privileged mode:
tacacs_enable TACP-15
<enter TACACS password>
Basic CLI commands:
show bgp peers
cphaprob -a if
show virtual system all
set virtual system
cphaprob state - shows the status of the cluster
show route destination
show interface x
show arp dynamic
show uptime - shows time that device has been up.
set clienv rows 0 - Shows all the config, similar to no-more in Juniper
Virtual Systems:
show virtual-system all
set virtual system <number>
Expert mode:
expert
arp -a | grep <IP>
arp -an | grep <IP>
netstat -rn | grep ip address "When you invoke netstat with the –r flag, it displays
the kernel routing table in the way we've been doing with route
ip addr - shows cluster IP address
ifconfig - shows all the interfaces
ifconfig | grep xxx // search for the info required
ifconfig | grep -b1 xx // shows 1 line before
ifconfig | grep -a1 xx // shows 1 line after
iconfig | grep -c2 ip address
fw monitor -e 'src=10.x.x.x;'
vsenv - sets the logical system
vsx stat -l // shows virtual system in expert mode.
If you can’t see a virtual device in CLI after creating a VSW for example, run the following commands:
add rba role TACP-0 virtual-system-access all
add rba role TACP-15 virtual-system-access all
save config
//Login again and you will see the virtual device
By privilege15
