Task: NAT44 (v7.5.0) ================================================== Category: Policy Description: NAT IPv4 policies New: No | IPv6: No Vendor Support: ✓ aws ✗ alcatel@aos ✓ azure ✗ brocade@fastiron ✗ cisco@ios ✗ cisco@ios-xe ✗ cisco@nx-os ✗ cisco@ios-xr ✓ cisco@asa ✗ cisco@wlc-air ✗ cisco@sg ✓ cisco@ftd ✗ cisco@aci ✗ cisco@meraki ✗ cisco@viptela ✗ cisco@apic ✗ cisco@encs ✗ dell@ftos ✗ dell@powerconnect ✗ dell@os10 ✗ fs@fsos ✓ gcp ✗ hpe@comware ✗ hpe@aruba ✗ hpe@arubasw ✗ hpe@arubacx ✗ hpe@3com ✗ hpe@aruba-iap ✗ riverbed@steelhead ✓ fortinet@fortigate ✗ fortinet@fortiswitch ✓ forcepoint@ngfw ✓ paloalto@pan-os ✗ paloalto@prisma ✓ juniper@junos ✗ juniper@mist ✓ checkpoint@gaia ✗ checkpoint@gaia-embedded ✗ extreme@boss ✗ extreme@enterasys ✗ extreme@voss ✗ extreme@exos ✗ arista@eos ✓ f5@big-ip ○ f5@f5osa ○ f5@f5osc ✗ huawei@vrp ✗ mikrotik@routeros ✗ quagga ✗ frr ✗ versa@vos ✗ silverpeak@unity ✗ vmware@nsx-t ✗ vmware@velocloud ✗ ruckus@vsz ✗ opengear@og ✗ opengear@og-om ✓ stormshield@sn ✗ nokia@timos ✓ citrix@adc CLI Commands: fortinet@fortigate: get system status paloalto@pan-os: show object dynamic-address-group all fortinet@fortigate: diagnose firewall auth list fortinet@fortigate: diagnose firewall auth ipv6 list fortinet@fortigate: diagnose firewall fqdn list fortinet@fortigate: diagnose firewall fqdn list-ip fortinet@fortigate: diagnose firewall fqdn6 list fortinet@fortigate: diagnose internet-service id [] fortinet@fortigate: get system interface paloalto@pan-os: show dns-proxy fqdn all fortinet@fortigate: show firewall address fortinet@fortigate: show firewall address6 fortinet@fortigate: show firewall addrgrp fortinet@fortigate: show firewall addrgrp6 fortinet@fortigate: show firewall central-snat-map fortinet@fortigate: show firewall ippool fortinet@fortigate: show firewall policy fortinet@fortigate: show firewall profile-group cisco@ftd: GET /api/fmc_config/v1/domain//object/networkAddresses?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//etherchannelinterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//vlaninterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//fpphysicalinterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//fplogicalinterfaces?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devicehapairs/ftddevicehapairs?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/deviceclusters/ftddevicecluster?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain/{domainUUID}/devicegroups/devicegrouprecords?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//assignment/policyassignments?expanded=true fortinet@fortigate: show firewall service custom cisco@ftd: GET /api/fmc_config/v1/domain//object/networkgroups?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//object/portobjectgroups?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//object/protocolportobjects?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//object/securityzones?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//object/interfacegroups?expanded=true paloalto@pan-os: show config pushed-shared-policy vsys paloalto@pan-os: show config merged paloalto@pan-os: request system fqdn show citrix@adc: show ns runningConfig cisco@asa: show running-configuration cisco@asa: show nat detail cisco@asa: show interfaces cisco@asa: show running-config all object citrix@adc: show vserver citrix@adc: show serviceGroup -includeMembers citrix@adc: show ns trafficDomain citrix@adc: show service juniper@junos: show configuration groups junos-defaults applications | display set stormshield@sn: cli stormshield@sn: config object group show name= stormshield@sn: config object internet show stormshield@sn: config object list type=all stormshield@sn: cat /usr/Firewall/ConfigFiles/objectgroup stormshield@sn: cat /usr/Firewall/ConfigFiles/geogroup stormshield@sn: cat /usr/Firewall/ConfigFiles/Filter/ stormshield@sn: cat /usr/Firewall/ConfigFiles/Filter/slotinfo fortinet@fortigate: show sys external-resource fortinet@fortigate: show firewall service group fortinet@fortigate: show firewall vip fortinet@fortigate: show firewall vipgrp fortinet@fortigate: show full-configuration application list fortinet@fortigate: show system interface fortinet@fortigate: show system settings fortinet@fortigate: show system zone fortinet@fortigate: show system sdwan cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//subinterfaces?expanded=true fortinet@fortigate: diagnose sys external-resource-list fortinet@fortigate: get webfilter categories fortinet@fortigate: show webfilter ftgd-local-rating fortinet@fortigate: show webfilter profile fortinet@fortigate: show webfilter urlfilter juniper@junos: show configuration security | display inheritance juniper@junos: show configuration applications | display inheritance forcepoint@ngfw: GET elements/host/ forcepoint@ngfw: sg-status -l forcepoint@ngfw: GET elements forcepoint@ngfw: GET elements/[single_fw|virtual_fw|fw_cluster]|single_layer2|virtual_layer2|layer2_cluster/ forcepoint@ngfw: GET elements/network/ forcepoint@ngfw: GET elements/fw_policy//fw_ipv4_nat_rule forcepoint@ngfw: GET elements/fw_policy//fw_ipv4_nat_rule/ forcepoint@ngfw: GET elements/single_fw//snapshot forcepoint@ngfw: GET elements/single_fw//snapshot/ checkpoint@gaia: ipf_pep show user query pdp forcepoint@ngfw: GET elements/interface_zone/ forcepoint@ngfw: GET elements/single_fw//alias_resolving forcepoint@ngfw: GET elements/match_expression forcepoint@ngfw: GET elements/match_expression/ forcepoint@ngfw: GET elements/tcp_service/ forcepoint@ngfw: GET elements/udp_service/ forcepoint@ngfw: GET elements/ip_service/ forcepoint@ngfw: GET elements/icmp_service/ checkpoint@gaia: POST /web_api/show-access-rulebase aws: SDK elbv2:DescribeLoadBalancersCommand aws: SDK elbv2:DescribeLoadBalancerAttributesCommand aws: SDK ec2:DescribeNatGatewaysCommand aws: SDK ec2:DescribeNetworkInterfacesCommand aws: SDK elbv2:DescribeTargetGroupsCommand aws: SDK elbv2:DescribeTargetGroupAttributesCommand aws: SDK elbv2:DescribeTargetHealthCommand checkpoint@gaia: POST /web_api/show-nat-rulebase forcepoint@ngfw: GET elements/application_situation/ checkpoint@gaia: POST /web_api/show-access-layers checkpoint@gaia: POST /web_api/show-packages checkpoint@gaia: POST /web_api/show-gateways-and-servers checkpoint@gaia: POST /web_api/show-object checkpoint@gaia: POST /web_api/show-objects checkpoint@gaia: show extended commands checkpoint@gaia: ipf_pep show user all gcp: GET /compute/v1/projects//aggregated/targetHttpsProxies gcp: GET /compute/v1/projects//global/networks gcp: GET /compute/v1/projects//aggregated/backendServices gcp: GET /compute/v1/projects//global/backendServices//getHealth gcp: GET /compute/v1/projects//aggregated/forwardingRules gcp: GET /compute/v1/projects//aggregated/instanceGroupManagers gcp: GET /compute/v1/projects//aggregated/instanceGroups gcp: GET /compute/v1/projects//aggregated/targetTcpProxies gcp: GET /compute/v1/projects//aggregated/targetHttpProxies gcp: GET /compute/v1/projects//aggregated/routers gcp: GET /compute/v1/projects//aggregated/targetGrpcProxies gcp: GET /compute/v1/projects//aggregated/urlMaps cisco@ftd: show summary cisco@ftd: show managers cisco@ftd: GET /api/fmc_config/v1/domain//policy/ftdnatpolicies?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//policy/ftdnatpolicies//natrules?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords/?expanded=true cisco@ftd: GET /api/fmc_config/v1/domain//devices/devicerecords//physicalinterfaces?expanded=true azure: GET /networkInterfaces forcepoint@ngfw: GET /elements/mgt_server/ f5@big-ip: list ltm virtual recursive f5@big-ip: show ltm virtual recursive f5@big-ip: show ltm pool detail recursive f5@big-ip: list ltm snatpool recursive azure: GET /applicationGateways azure: GET /loadBalancers azure: GET /natGateways aws: SDK elbv2:DescribeListenersCommand azure: GET /publicIPAddresses azure: GET /publicIPPrefixes azure: GET /virtualMachineScaleSets/networkInterfaces azure: GET /virtualNetworks gcp: GET /compute/v1/projects//aggregated/instances gcp: GET /compute/v1/projects//regions//routers//getNatMappingInfo gcp: GET /compute/v1/projects//aggregated/subnetworks Legend: ✓=Full, ✗=Not Yet, ○=N/A