tail -f /var/log/messages | grep vpn !! View VPN logs
echo /config/userdb/list | igcli -n !! View VPN Users
service sslvpn-plus status !! View SSL VPN status
tail -f /var/log/messages | grep sslvpnstatslogd !! View SSL VPN user logs
!! View VPN Tunnels
echo /config/sad/salist | igcli -n
echo "/config/sad/saflush *" | igcli -n !! Teardown ALL ipsec SAs
echo /config/sad/saflush <vpn name> | igcli -n !! Teardown a specific ipsec SA
echo /config/ike/saflush | igcli -n !! Teardown ALL ike SAs
more /igateway/policy/current/ham !! View firewall's current HA status
grep -i "failover" /var/log/messages !! Search for failover logs
update-control -f !! Find Update
update-control -d !! Download Update
update-control -i fw !! Install Update
Notes:
- Use at your own risk, unverified
service iss-spa doheartbeat; tail -f /var/log/messages | egrep -i 'cfg|iss-spa|error'
cat /etc/crm/policies/cml/NetworkObjects/* | grep <object name>
cat /etc/crm/policies/cml/NetworkProtector/fwm/* | grep <rule specifics>
more /igateway/policy/current/ham !! Firewall's current failover status
wget -c https://<url>/<file>.pkg
hotfix-install <file>.pkg
ifconfig <interface> <ip> netmask <netmask> up
Notes:
- Useful for modifying IP without updating via Site Protector
firewall-dump
issasApache -a si !! View Licenses
iss-licinst --licfile <filename>.isslicense !! Manually update license from file
Notes:
- 'true' next to dates indicates expired license
htpasswd /var/www/auth/htpasswd admin
Notes:
- This resets the Admin password required to login to the LMI of the device.