Task: Zone firewall (v4.4.1) ================================================== Category: Security Description: Firewall security policy configuration New: No | IPv6: No Vendor Support: ○ aws@ec2 ✗ azure ✗ brocade@fastiron ✗ cisco@ios ✗ cisco@ios-xe ○ cisco@nx-os ○ cisco@ios-xr ✗ cisco@asa ○ cisco@wlc-air ○ cisco@sg ✓ cisco@ftd ○ cisco@aci ✗ cisco@meraki ✗ cisco@viptela ○ dell@ftos ○ dell@powerconnect ○ hp@comware ○ hp@aruba ○ hp@arubasw ○ hp@arubacx ○ hp@3com ○ riverbed@steelhead ✓ fortinet@fortigate ✓ paloalto ? paloalto@pan-os ✓ juniper@junos ○ juniper@mist ✓ checkpoint@gaia ✓ checkpoint@gaia-embedded ○ extreme@boss ○ extreme@enterasys ○ extreme@voss ○ extreme@xos ○ arista@eos ○ f5@big-ip ○ huawei@vrp ○ mikrotik@routeros ○ quagga ○ frr ○ versa@vos ✗ silverpeak@unity ✗ vmware@nsx-t ○ ruckus@vsz CLI Commands: checkpoint@gaia: /web_api/showGatewaysAndServers fortinet@fortigate: show firewall address fortinet@fortigate: show firewall addrgrp fortinet@fortigate: show firewall policy fortinet@fortigate: show firewall profile-group fortinet@fortigate: show firewall service custom fortinet@fortigate: show firewall service group fortinet@fortigate: show firewall vip fortinet@fortigate: show firewall vipgrp fortinet@fortigate: show full-configuration application list fortinet@fortigate: show system interface fortinet@fortigate: show system zone checkpoint@gaia: /web_api/showAccessLayers checkpoint@gaia: /web_api/showAccessRulebase fortinet@fortigate: get system status checkpoint@gaia: /web_api/showObject checkpoint@gaia: /web_api/showObjects checkpoint@gaia: /web_api/showPackages checkpoint@gaia-embedded: /web_api/showAccessLayers checkpoint@gaia-embedded: /web_api/showAccessRulebase checkpoint@gaia-embedded: /web_api/showGatewaysAndServers checkpoint@gaia-embedded: /web_api/showObject checkpoint@gaia-embedded: /web_api/showObjects checkpoint@gaia-embedded: /web_api/showPackages juniper@junos: show configuration | display set juniper@junos: show configuration groups junos-defaults applications | display set juniper@junos: show interfaces statistics detail cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/icmpv4objects?expanded=true cisco@ftd: show dns cisco@ftd: show managers cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/policy/accesspolicies?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/policy/accesspolicies/{id}/accessrules?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/devices/devicerecords?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/devices/devicerecords/{id}/physicalinterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/devices/devicerecords/{id}/subinterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/applications?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/networkaddresses?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/networkgroups?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/portobjectgroups?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/protocolportobjects?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/securityzones?expanded=true cisco@ftd: show summary cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/object/icmpv6objects?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/assignment/policyassignments?expanded=true paloalto: show config pushed-shared-policy vsys paloalto: show interface paloalto: show interface all paloalto: show config merged paloalto: request system fqdn show paloalto: show dns-proxy fqdn all paloalto: show object dynamic-address-group all fortinet@fortigate: diagnose firewall auth list fortinet@fortigate: diagnose firewall fqdn list fortinet@fortigate: diagnose internet-service id [ID] Legend: ✓=Full, ✗=Not Yet, ○=N/A