Family: forcepoint ngfw (v6.1.0) ================================================== Vendor: forcepoint Family: ngfw New: No CLI Commands: -------------------------------------------------- Zone firewall: GET elements/application_situation/ Vlan: ip address Vlan: ip link Zone firewall: sg-status -l Zone firewall: ip address Zone firewall: GET elements Zone firewall: GET elements/rbvpn_tunnel/ Zone firewall: GET elements/single_fw//internal_gateway//internal_endpoint/ Zone firewall: GET elements/[single_fw|virtual_fw|fw_cluster]/ Zone firewall: GET elements/single_fw//snapshot Zone firewall: GET elements/single_fw//snapshot/ Zone firewall: GET elements/network/ Zone firewall: GET elements/tcp_service/ Zone firewall: GET elements/udp_service/ SN: sg-status -l Zone firewall: GET elements/ip_service/ Zone firewall: GET elements/fw_policy//fw_ipv4_access_rule Zone firewall: GET elements/fw_policy//fw_ipv4_access_rule/ Zone firewall: GET elements/interface_zone/ Zone firewall: GET elements/ip_country_group/ Zone firewall: GET elements/ip_list/ Zone firewall: GET elements/match_expression Zone firewall: GET elements/match_expression/ Zone firewall: GET elements/address_range/ Zone firewall: GET elements/single_fw//alias_resolving Zone firewall: GET elements/icmp_service/ Zone firewall: GET elements/host/ IPsec: GET /elements/external_gateway/ ARP: ip neighbor Device info: sg-status -l Device info: cat /proc/meminfo Device info: date IPsec: sg-status -l IPsec: ip -s -s -d link IPsec: GET /elements IPsec: GET /elements/[single_fw|virtual_fw|fw_cluster]/ IPsec: GET /elements/[single_fw|virtual_fw|fw_cluster]//internal_gateway/ IPsec: GET /elements/gateway_profile/ IPsec: GET /elements/[single_fw|virtual_fw|fw_cluster]//internal_gateway//internal_endpoint/ IPsec: GET /elements/rbvpn_tunnel/ IPsec: POST /monitoring_status Initial device discovery: sg-version IPsec: GET /elements/external_gateway//external_endpoint/ L2 Interfaces: ip -s -s -d link L3 Interfaces: ip address L3 Interfaces: GET elements L3 Interfaces: GET elements/rbvpn_tunnel/ L3 Interfaces: GET elements/single_fw//internal_gateway//internal_endpoint/ L3 Interfaces: GET elements/[single_fw|virtual_fw|fw_cluster]/ IPv6 Neighbor Discovery: ip -6 neigh Neighbors: lldpcli show neighbors Routing table: ip address Routing table: ip route Routing table: ip -6 route Task Support: -------------------------------------------------- Basic discovery: ✓ ARP ✓ Device info ○ Disable pagination ○ FHRP ✓ Initial device discovery ✓ IPv6 Neighbor Discovery ✓ L2 Interfaces ✓ L3 Interfaces ✗ Link aggregations ○ MAC ✓ Neighbors ✓ Routing table ✓ SN ○ STP ○ Virtual Contexts ✓ Vlan Configuration: ○ Configuration saved ○ Current config ○ Startup config Hardware: ○ Cluster ○ Extenders ○ PoE ○ Power supplies & fans ○ Stacking ○ Transceivers ○ VSS Management: ○ DHCPv4 Relays ○ DHCPv4 Servers ✗ DNS resolver ○ IP Flow ✗ License ✗ NTP ○ Port mirroring ✗ PTP ✗ SNMP ○ Syslog ○ Unidirectional Link Detection MPLS: ○ Circuit cross-connect ○ MPLS forwarding ○ MPLS LDP ○ RSVP ○ VPLS ○ VPWS Multicast: ○ IGMP ○ IGMP Snooping ○ MAC multicast address table ○ MROUTE ○ PIM Other: ○ PPPoE Policy: ✗ NAT44 QoS: ✗ QoS Routing: ○ Fabric Path ✗ Policy-based Routing ○ Route summary ✗ Routing policies ○ VRF Routing protocols: ✗ BGP ○ EIGRP ○ IS-IS ○ OSPF ○ OSPFv3 ○ RIP SDN: ○ APIC ○ Cisco ACI ○ Virtual machines ○ VXLAN SDWAN: ✗ SD-WAN sites Security: ✗ AAA ✗ ACL ○ DHCPv4 Snooping ○ DMVPN ○ Error disabled interfaces ✓ IPsec ✗ NAT ✗ Prefix lists ○ Secured access ports ○ Storm control ○ STP port security ○ Virtual servers ✓ Zone firewall Wireless: ○ Wireless AP ○ Wireless APs ○ Wireless clients All Families from forcepoint: -------------------------------------------------- forcepoint@ngfw <-- current Legend: ✓=Full, ✗=Not Yet, ○=N/A