最近在學習checkpoint,可能陸續會有相關的文章貼上來和大家分享,請各位多多指點哦。
這裏先貼上CLI Tools的學習筆記,講的不對的地方請大家不吝賜教。
先介紹下CLI tools, CLI是Command Line Interface的縮寫說白了CLI tools 就是checkpoint爲系統管理員提供的命令行管理界面及一些命令。跟linux text界面的概念是一回事。
下面是相關命令介紹,附件有checkpoint expert mode CLI命令介紹的pdf文檔,記得下載哦。
1.系統配置命令: sysconfig
登錄checkpoint 命令行界面後之後在命令行中輸入sysconfig,系統將進入以下界面
可以選擇相應的選項做相關的配置。這些配置在web管理界面都是可以做的,這裏就不詳細介紹了。
2.進入專家模式:expert
登錄checkpoint firewall之後在命令行中輸入expert,輸入expert密碼,進入專家模式
進入專家模式後可使用如下命令:
- tcpdum -i eth0
- tcpdump命令選項:
- Usage: tcpdump [-adeflnNOpqRStuvxX] [ -c count ] [ -C file_size ]
- [ -F file ] [ -i interface ] [ -r file ] [ -s snaplen ]
- [ -T type ] [ -U user ] [ -w file ] [ -E algo:secret ] [ expression ]
- fw unloadlocal
- unload current policy on the gateway,and sets the gateway to the default policy。
- fw stat
- the policy name will be displayed。
- fw ver
- the gateway version is displayed。
- fw --help
- 命令行幫助
- [Expert@firewall]# fw --help
- Unknown command "--help"
- Usage:
- fw ver [-h] ... # Display version
- fw kill [-sig_no] procname # Send signal to a daemon
- fw putkey ... # Client server keys
- fw sam ... # Control sam server
- fw sam_policy ... # SAM policy editor
- fw fetch targets # Fetch last policy
- fw amw fetch # Fetch Anti Malware policy
- fw tab [-h] ... # Kernel tables content
- fw monitor [-h] ... # Monitor ***-1/FW-1 traffic
- fw ctl [args] # Control kernel
- fw lichosts # Display protected hosts
- fw log [-h] ... # Display logs
- fw logswitch [-h target] [+|-][oldlog] # Create a new log file;
- # the old log is moved
- fw repairlog ... # Log index recreation
- fw mergefiles ... # log files merger
- fw lslogs ... # Remote machine log file list
- fw fetchlogs ... # Fetch logs from a remote host
- netstat -rn displays the routting table
- ifconfig 接口配置命令,具體看ifconfig -h
- cpstop 停止服務
- cpstart 開啓服務
- cprestart 重啓服務
- adduser username To add the administrator
- deluser username To delete the administrator
- showusers show all user
- backup -f yourname_backup 創建備份 備份存儲路徑:/var/CPbackup/backups
- restore -f backupfilename 還原備份 必須在備份目錄下