tail -f /var/log/messages | grep vpn  !! View VPN logs
echo /config/userdb/list | igcli -n   !! View VPN Users
service sslvpn-plus status            !! View SSL VPN status
tail -f /var/log/messages | grep sslvpnstatslogd  !! View SSL VPN user logs

!! View VPN Tunnels
echo /config/sad/salist | igcli -n

echo "/config/sad/saflush *" | igcli -n           !! Teardown ALL ipsec SAs
echo /config/sad/saflush <vpn name> | igcli -n  !! Teardown a specific ipsec SA
echo /config/ike/saflush | igcli -n             !! Teardown ALL ike SAs

[ # ]

more /igateway/policy/current/ham  !! View firewall's current HA status
grep -i "failover" /var/log/messages  !! Search for failover logs

[ # ]

update-control -f  !! Find Update
update-control -d  !! Download Update
update-control -i fw  !! Install Update

Notes:

  • Use at your own risk, unverified

[ # ]

service iss-spa doheartbeat; tail -f /var/log/messages | egrep -i 'cfg|iss-spa|error'

[ # ]

cat /etc/crm/policies/cml/NetworkObjects/* | grep <object name>
cat /etc/crm/policies/cml/NetworkProtector/fwm/* | grep <rule specifics>
more /igateway/policy/current/ham  !! Firewall's current failover status

[ # ]

wget -c https://<url>/<file>.pkg
hotfix-install <file>.pkg

[ # ]

ifconfig <interface> <ip> netmask <netmask> up

Notes:

  • Useful for modifying IP without updating via Site Protector

[ # ]

firewall-dump

[ # ]

issasApache -a si   !! View Licenses
iss-licinst --licfile <filename>.isslicense  !! Manually update license from file

Notes:

  • 'true' next to dates indicates expired license

[ # ]

htpasswd /var/www/auth/htpasswd admin

Notes:

  • This resets the Admin password required to login to the LMI of the device.

[ # ]