Lompat ke konten Lompat ke sidebar Lompat ke footer
Beranda / Fortigate - CLI Command & Verification List Part-2

Fortigate - CLI Command & Verification List Part-2

Oleh Hasugian Posting Komentar

 

 

 


 


 

 

 

 

 

 

Important Command
FortiGate1 # show full-configuration | grep
FortiGate1 # show full-configuration
FortiGate1 # get system status
FortiGate1 # show firewall policy
FortiGate1 # get router info routing-table static
FortiGate1 # get router info routing-table all
FortiGate1 # show full-configuration system admin
-------------------
Configure & Assign IP Address to Interface
FortiGate1 # config system interface
FortiGate1 (interface) # edit port4
FortiGate1 (port4) # set mode static
FortiGate1 (port4) # set ip 192.168.100.62 255.255.255.0
FortiGate1 (port4) # set allowaccess http https ssh telnet
FortiGate1 (port4) # end
FortiGate1 # diagnose ip address list
FortiGate1 # show system interface ?
FortiGate1 # show system interface port4
---------------------------
Configure Default Route
FortiGate1 # config router static
FortiGate1 (static) # edit 1
FortiGate1 (1) # set device port1
FortiGate1 (1) # set gateway 192.168.122.2
FortiGate1 (1) # set dst 0.0.0.0/0
FortiGate1 (1) # end
FortiGate1 # get router info routing-table all
----------------------
Configure DNS
FortiGate1 # config system dns
FortiGate1 (dns) # set primary 8.8.8.8
FortiGate1 (dns) # set secondary 8.8.4.4
FortiGate1 (dns) # end
FortiGate1 # get system dns
---------------------------
Configure Firewall Hostname
FortiGate1 # config system global
FortiGate1 (global) # set hostname FG-1
FortiGate1 (global) # end
------------------------------
Set Admin Password
FG-1 # config system admin
FG-1 (admin) # edit admin
FG-1 (admin) # set password 123
FG-1 (admin) # end
FG-1 # get system admin
-----------------------
More Commands
FortiGate1 # exec factoryreset
FortiGate1 # get hardware nic
FG-1 # execute reboot
FG-1 # execute shutdown
FG-1 # execute ping 8.8.8.8
FG-1 # get system arp
FG-1 # get system session list
-----------------------
Auto-save
# config  system  global
# set cfg-save auto
----------------------------------
Diagnosa user
FGLAB1 # diagnose test authserver local training user1 123
authenticate user 'user1' in group 'training' succeeded
training = nama group, user1 = nama user, 123=password
---------------------------------------------------
#show full-configuration system interface port1
--------------
cek kekuatan password dan profile
#show system admin
#show system accprofile
--------------
MEMBATASI 2 KALI SALAH PASSORD
Forti_LAB # config system global
Forti_LAB (global) # set admin-lockout-threshold 2
Forti_LAB (global) # set admin-lockout-duration 100
Forti_LAB (global) # end
--------------------------------
BUAT LOG HADRDISK FORTI DI EVE-NG
#/opt/qemu/bin/qemu-img create -f qcow2 virtiob.qcow2 30G
#/opt/unetlab/wrappers/unl_wrapper -a fixpermissions

lalau restart EVE-NG nya
#get system status
harusnya hardsik sdh Available), lalu format hardsisknya

Cek Harddisk
#diagnose hardware deviceinfo disk
-------------------------------
Format hardisk
#execute formatlogdisk
lalu restart fortinya, stlh lgin lakukn command ini
#config log disk setting
---------------------------------
Membatasi Penyimpan Log di Hardisk (hanya 10 hari)
FGLAB1 # config log disk setting
FGLAB1 (setting) # set maximum-log-age 10
FGLAB1 (setting) # end
----------------------
Cara Aktifkan Central-SNAT
config system settings
set central-nat enable
end
-------------------------
cek Performance
#get system performance status

Posting Komentar untuk "Fortigate - CLI Command & Verification List Part-2"

Posting Komentar