# Task: Zone firewall — v6.4.0

**Version:** 6.4.0
**Category:** Security
**Description:** Firewall security policy configuration
**New in this version:** No
**IPv6 Support:** No
**URL:** https://feature-matrix-imenovsky01a.user.ipf.cx/6.4.0/task/87864763

---

## Vendor Support Matrix

| Vendor / Family | Status | IPv6 | Notes |
|-----------------|--------|------|-------|
| aws@ec2 | ○ | — |  |
| alcatel@aos | ○ | — |  |
| azure | ✗ | — |  |
| brocade@fastiron | ✗ | — |  |
| cisco@ios | ○ | — |  |
| cisco@ios-xe | ○ | — |  |
| cisco@nx-os | ○ | — |  |
| cisco@ios-xr | ○ | — |  |
| cisco@asa | ○ | — |  |
| cisco@wlc-air | ○ | — |  |
| cisco@sg | ○ | — |  |
| cisco@ftd | ✓ | — |  |
| cisco@aci | ○ | — |  |
| cisco@meraki | ○ | — |  |
| cisco@viptela | ✗ | — |  |
| cisco@apic | ○ | — |  |
| dell@ftos | ○ | — |  |
| dell@powerconnect | ○ | — |  |
| dell@os10 | ○ | — |  |
| fs@fsos | ✗ | — |  |
| hp@comware | ○ | — |  |
| hp@aruba | ○ | — |  |
| hp@arubasw | ○ | — |  |
| hp@arubacx | ○ | — |  |
| hp@3com | ○ | — |  |
| hp@aruba-iap | ○ | — |  |
| riverbed@steelhead | ○ | — |  |
| fortinet@fortigate | ✓ | — |  |
| forcepoint@ngfw | ✓ | — |  |
| paloalto@pan-os | ✓ | — |  |
| paloalto@prisma | ✗ | — |  |
| juniper@junos | ✓ | — |  |
| juniper@mist | ○ | — |  |
| checkpoint@gaia | ✓ | — |  |
| checkpoint@gaia-embedded | ✓ | — |  |
| extreme@boss | ○ | — |  |
| extreme@enterasys | ○ | — |  |
| extreme@voss | ○ | — |  |
| extreme@exos | ○ | — |  |
| arista@eos | ○ | — |  |
| f5@big-ip | ○ | — |  |
| huawei@vrp | ○ | — |  |
| mikrotik@routeros | ○ | — |  |
| quagga | ○ | — |  |
| frr | ○ | — |  |
| versa@vos | ○ | — |  |
| silverpeak@unity | ✗ | — |  |
| vmware@nsx-t | ✗ | — |  |
| ruckus@vsz | ○ | — |  |
| opengear@im | ○ | — |  |

---

## CLI Commands

| Vendor / Family | Command | Notes |
|-----------------|---------|-------|
| checkpoint@gaia-embedded | `POST /web_api/show-object` |  |
| forcepoint@ngfw | `GET elements/single_fw/<id>/snapshot` |  |
| forcepoint@ngfw | `GET elements/[single_fw\|virtual_fw\|fw_cluster]/<id>` |  |
| forcepoint@ngfw | `GET elements/single_fw/<fwId>/internal_gateway/<gatewayId>/internal_endpoint/<endpointId>` |  |
| forcepoint@ngfw | `GET elements/rbvpn_tunnel/<id>` |  |
| forcepoint@ngfw | `GET elements` |  |
| forcepoint@ngfw | `ip address` |  |
| forcepoint@ngfw | `sg-status -l` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-updatable-objects` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-packages` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-objects` |  |
| forcepoint@ngfw | `GET elements/single_fw/<id>/snapshot/<id>` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-gateways-and-servers` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-access-rulebase` |  |
| checkpoint@gaia-embedded | `POST /web_api/show-access-layers` |  |
| checkpoint@gaia | `POST /web_api/show-updatable-objects` |  |
| checkpoint@gaia | `POST /web_api/show-packages` |  |
| checkpoint@gaia | `POST /web_api/show-objects` |  |
| checkpoint@gaia | `POST /web_api/show-object` |  |
| checkpoint@gaia | `POST /web_api/show-gateways-and-servers` |  |
| checkpoint@gaia | `POST /web_api/show-access-rulebase` |  |
| checkpoint@gaia | `POST /web_api/show-access-layers` |  |
| forcepoint@ngfw | `GET elements/match_expression` |  |
| juniper@junos | `show interfaces statistics detail` |  |
| juniper@junos | `show configuration groups junos-defaults applications \| display set` |  |
| juniper@junos | `show configuration applications \| display inheritance` |  |
| juniper@junos | `show configuration security \| display inheritance` |  |
| forcepoint@ngfw | `GET /elements/mgt_server/<id>` |  |
| forcepoint@ngfw | `GET elements/host/<id>` |  |
| forcepoint@ngfw | `GET elements/icmp_service/<id>` |  |
| forcepoint@ngfw | `GET elements/single_fw/<id>/alias_resolving` |  |
| forcepoint@ngfw | `GET elements/address_range/<id>` |  |
| forcepoint@ngfw | `GET elements/match_expression/<id>` |  |
| fortinet@fortigate | `show system zone` |  |
| forcepoint@ngfw | `GET elements/ip_list/<id>` |  |
| forcepoint@ngfw | `GET elements/ip_country_group/<id>` |  |
| forcepoint@ngfw | `GET elements/interface_zone/<id>` |  |
| forcepoint@ngfw | `GET elements/fw_policy/<id>/fw_ipv4_access_rule/<id>` |  |
| forcepoint@ngfw | `GET elements/fw_policy/<id>/fw_ipv4_access_rule` |  |
| forcepoint@ngfw | `GET elements/ip_service/<id>` |  |
| forcepoint@ngfw | `GET elements/application_situation/<id>` |  |
| forcepoint@ngfw | `GET elements/udp_service/<id>` |  |
| forcepoint@ngfw | `GET elements/tcp_service/<id>` |  |
| forcepoint@ngfw | `GET elements/network/<id>` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/networkaddresses?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUUID>/policy/prefilterpolicies/<containerUUID>/prefilterrules?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUUID>/policy/prefilterpolicies?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUUID>/object/interfacegroups?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/assignment/policyassignments?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/icmpv6objects?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/icmpv4objects?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/securityzones?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/protocolportobjects?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/portobjectgroups?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/networkgroups?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUUID>/object/anyprotocolportobjects?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/object/applications?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/devicehapairs/ftddevicehapairs?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/devices/devicerecords/<id>/etherchannelinterfaces?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/devices/devicerecords/<id>/subinterfaces?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/devices/devicerecords/<id>/physicalinterfaces?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/devices/devicerecords?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/policy/accesspolicies/<id>/accessrules?expanded=true` |  |
| cisco@ftd | `GET /api/fmc_config/v1/domain/<domainUuid>/policy/accesspolicies?expanded=true` |  |
| cisco@ftd | `show managers` |  |
| cisco@ftd | `show dns` |  |
| fortinet@fortigate | `get system status` |  |
| fortinet@fortigate | `show system interface` |  |
| fortinet@fortigate | `show full-configuration application list` |  |
| fortinet@fortigate | `show firewall vipgrp` |  |
| fortinet@fortigate | `show firewall vip` |  |
| fortinet@fortigate | `show firewall service group` |  |
| fortinet@fortigate | `show firewall service custom` |  |
| fortinet@fortigate | `show firewall profile-group` |  |
| fortinet@fortigate | `show firewall policy` |  |
| fortinet@fortigate | `show firewall addrgrp` |  |
| fortinet@fortigate | `show firewall address` |  |
| cisco@ftd | `show summary` |  |
| fortinet@fortigate | `diagnose internet-service id [<id>]` |  |
| fortinet@fortigate | `diagnose firewall fqdn list` |  |
| fortinet@fortigate | `diagnose firewall auth list` |  |
| paloalto@pan-os | `show object dynamic-address-group all` |  |
| paloalto@pan-os | `show dns-proxy fqdn all` |  |
| paloalto@pan-os | `request system fqdn show` |  |
| paloalto@pan-os | `show config merged` |  |
| paloalto@pan-os | `show interface all` |  |
| paloalto@pan-os | `show interface <intName>` |  |
| paloalto@pan-os | `show config pushed-shared-policy vsys <vsysName>` |  |

---

## Legend

- **✓** = Fully Integrated
- **✗** = Not Yet Integrated
- **○** = Not Available

*Generated: 2026-04-16T18:49:28.485Z*