Professional Documents
Culture Documents
CP Cli Ref Card
CP Cli Ref Card
fw ctl pstat
fw ctl chain
cpstat <app_flag>
[-f flavour]
Environment variables
It's useful to know some of the environment variables set and needed by FW-1.
Below are some of the most commonly used. Depending on your installation there
will be more. Check the env output for more information.
$FWDIR
FW-1 installation directory, with f.i. the conf, log, lib, bin
and spool directories. You will mostly work in this tree.
cpinfo -z -o <file>
fw hastat
cprlic
cphaprob state
vpn overlap_encdom
fw tab t <tbl>
[s]
avsu_client [-app
<app>] get_version
avsu_client [-app
<app>] fetch_remote
-fi
info device
info computers
fwm -p
cprestart
cpridstop
cpridstart
cpridrestart
fw unloadlocal
$FW_BOOT_DIR
cpwd_admin list
fw ctl iflist
$MDSDIR
fwm logexport -i
in.log -o out.csv -d
',' -p -n
$FGDIR
dtps lic
View licenses.
fw log -c <action>
fw lichosts
$CPMDIR
cplic print
$CPDIR
fwm logexport
fw logswitch [-audit]
Write the current (audit) logfile to YY-MM-DDHHMMSS.log and start a new fw.log.
fw fetchlogs -f file
module
Reset SIC.
Initialize SIC.
fw log -f -t
Tail the actual log file from the end of the log.
The latest version of this PDF is available at http://bit.ly/fw1cli. Licensed under Creative Commons BY NC SA License. SecurePlatform, SofaWare, SmartCenter, ClusterXL, Provider-1, VSX, IPSO and VPN-1/UTM-1 Edge are a registered trademarks of Check Point Software Technologies, Ltd.
fw monitor
fw monitor, Check Points packet sniffing tool, is part of every FW-1 installation,
independent from the underlying platform. Also the syntax is the same for all
available platforms. Read the Check Point guide (http://bit.ly/fwmonref) or see my
fw monitor cheat sheet (http://bit.ly/cpfwmon) for detailed info on this topic.
fw monitor Examples:
# packets with IP 192.168.1.12 as SRC or DST
fw monitor -e 'accept host(192.168.1.12);'
SecurePlatform
sysconfig
webui <enable| Enable the WebUI on HTTPS port 443 or port [port] or
disable> [port] disable the WebUI.
showusers
Display a list of configured SecurePlatform administrators.
adduser <user>
backup
restore <file>
snapshot
Provider-1
mds_backup
mds_restore <file>
vpn shell
revert
Display VSX status. Verbose output with -v,
interface list with -l or status of single system
with VS ID <id>.
patch add cd
<patch>
vsx get
cd_ver or ver
show summary
addarp <ip>
<MAC>
You can enter clish commands either in the clish itself or from the shell using
clish [-s] -c "<command>". The -s option runs save config afterwards.
dns [add|del
<ip>]
log list
show images
View log file number <nr> from the log list index.
passwd
VSX
vsx stat [-v] [-l] [id]
In general, a lot of Check Point's commands do understand the -vs <id> switch.
ClusterXL
cp_conf ha enable|
disable [norestart]
Provider-1
mdsenv [cma_name]
set ssh server log-level Set sshd log verbosity to quiet, fatal, error,
<level>
info (default), verbose or debug.
show vrrp [interfaces]
rm /config/active
mdsstart [-m|-s]
cphastart
mdsstop [-m]
fw hastat
cphaprob state
mdsstat [cma_name]|[-m]
cphaprob -a if
cpinfo -c <cma>
info fw [rules]
cphaprob syncstat
info nat
mcd <directory>
info device
cphastop
cphaconf set_ccp
<broadcast|
multicast>
mdsstop_customer <cma>
export
mdsstart_customer <cma>
mdsconfig
The latest version of this PDF is available at http://bit.ly/fw1cli. Licensed under Creative Commons BY NC SA License. SecurePlatform, SofaWare, SmartCenter, ClusterXL, Provider-1, VSX, IPSO and VPN-1/UTM-1 Edge are a registered trademarks of Check Point Software Technologies, Ltd.