diagnose sys
system
This topic includes the following commands:
- diagnose sys botnet-domain
- diagnose sys botnet-domain hit
- diagnose sys botnet-domain list
- diagnose sys botnet-ip
- diagnose sys botnet-ip find
- diagnose sys botnet-ip flush
- diagnose sys botnet-ip hit
- diagnose sys botnet-ip list
- diagnose sys cmdb
- diagnose sys cmdb check-lock
- diagnose sys cmdb dump
- diagnose sys cmdb dump vdom
- diagnose sys cmdb flag
- diagnose sys cmdb flag info
- diagnose sys cmdb flag reset
- diagnose sys cmdb flag reset script-running
- diagnose sys cmdb info
- diagnose sys cmdb refcnt
- diagnose sys cmdb refcnt reset
- diagnose sys cmdb refcnt show
- diagnose sys cmdb set-readlock
- diagnose sys cmdb unset-readlock
- diagnose sys cmdb-profile
- diagnose sys cmdb-profile info
- diagnose sys cmdb-profile node
- diagnose sys cmdb-profile reset
- diagnose sys cmdb-profile top10
- diagnose sys cmdb-profile top10 average
- diagnose sys cmdb-profile top10 total
- diagnose sys config-transaction
- diagnose sys config-transaction show
- diagnose sys config-transaction show entity-by-txn
- diagnose sys config-transaction show mctx
- diagnose sys config-transaction show txn-cli-commands
- diagnose sys config-transaction show txn-entity
- diagnose sys config-transaction show txn-info
- diagnose sys config-transaction show txn-lock
- diagnose sys config-transaction show txn-meta
- diagnose sys config-transaction status
- diagnose sys conntrack
- diagnose sys conntrack clear
- diagnose sys conntrack count
- diagnose sys conntrack list-dying4
- diagnose sys conntrack list-dying6
- diagnose sys conntrack list-unconfirmed4
- diagnose sys conntrack list-unconfirmed6
- diagnose sys conntrack list4
- diagnose sys conntrack list6
- diagnose sys conntrack stats
- diagnose sys csf
- diagnose sys csf authorization
- diagnose sys csf authorization accept
- diagnose sys csf authorization deny
- diagnose sys csf authorization pending-list
- diagnose sys csf downstream
- diagnose sys csf downstream-devices
- diagnose sys csf dynamic-sync-read
- diagnose sys csf dynamic-sync-request
- diagnose sys csf dynamic-sync-update
- diagnose sys csf fabric-device
- diagnose sys csf fabric-device list
- diagnose sys csf file
- diagnose sys csf file cat
- diagnose sys csf file top-mem
- diagnose sys csf forticloud-id-list
- diagnose sys csf get-bulk-global-view
- diagnose sys csf global
- diagnose sys csf initialize-cmd
- diagnose sys csf license
- diagnose sys csf merge-cmd
- diagnose sys csf neighbor
- diagnose sys csf neighbor flush
- diagnose sys csf neighbor list
- diagnose sys csf query
- diagnose sys csf send-test-log-upstream
- diagnose sys csf tunnel-test-listener
- diagnose sys csf tunnel-test-sender
- diagnose sys csf upstream
- diagnose sys csf versions
- diagnose sys dayst-info
- diagnose sys device
- diagnose sys device add
- diagnose sys device delete
- diagnose sys device list
- diagnose sys external-resource
- diagnose sys external-resource list
- diagnose sys external-resource push-add
- diagnose sys external-resource push-api-json-commands
- diagnose sys external-resource push-remove
- diagnose sys external-resource push-snapshot
- diagnose sys external-resource stats
- diagnose sys filesystem
- diagnose sys filesystem hash
- diagnose sys filesystem last-modified-files
- diagnose sys filesystem tree
- diagnose sys fips
- diagnose sys fips error-mode
- diagnose sys fips kat-error
- diagnose sys ha
- diagnose sys ha check-vc
- diagnose sys ha checksum
- diagnose sys ha checksum cached
- diagnose sys ha checksum cluster
- diagnose sys ha checksum log
- diagnose sys ha checksum log clear
- diagnose sys ha checksum log disable
- diagnose sys ha checksum log enable
- diagnose sys ha checksum recalculate
- diagnose sys ha checksum show
- diagnose sys ha checksum show-nonsync
- diagnose sys ha checksum test
- diagnose sys ha dump-by
- diagnose sys ha dump-by debug-zone
- diagnose sys ha dump-by device
- diagnose sys ha dump-by group
- diagnose sys ha dump-by kernel
- diagnose sys ha dump-by rcache
- diagnose sys ha dump-by vcluster
- diagnose sys ha dump-by vdom
- diagnose sys ha extfile-sig
- diagnose sys ha fgsp-zone
- diagnose sys ha fib
- diagnose sys ha hactx-stats
- diagnose sys ha hactx-stats clear
- diagnose sys ha hadiff
- diagnose sys ha hadiff log
- diagnose sys ha hadiff log clear
- diagnose sys ha hadiff log disable
- diagnose sys ha hadiff log enable
- diagnose sys ha hadiff max-sync-turns
- diagnose sys ha hadiff max-unsync-wait
- diagnose sys ha hadiff status
- diagnose sys ha hasync-conn-max-buf
- diagnose sys ha hasync-stats
- diagnose sys ha hasync-stats all
- diagnose sys ha hasync-stats by-object
- diagnose sys ha hasync-stats most-recent
- diagnose sys ha hasync-stats most-time
- diagnose sys ha heartbeat
- diagnose sys ha history
- diagnose sys ha history clear
- diagnose sys ha history read
- diagnose sys ha mac
- diagnose sys ha pingsvr-secondary-force-reset
- diagnose sys ha recalculate-extfile-signature
- diagnose sys ha reset-health-status
- diagnose sys ha reset-uptime
- diagnose sys ha session-sync-dev
- diagnose sys ha session-sync-dev clear
- diagnose sys ha session-sync-dev set
- diagnose sys ha standalone-peers
- diagnose sys ha standalone-peers reset-stats
- diagnose sys ha stats
- diagnose sys ha status
- diagnose sys ha sync-stats
- diagnose sys ha sync-stats-reset
- diagnose sys ha vlan-hb-monitor
- diagnose sys icap-remote-server
- diagnose sys icap-remote-server status
- diagnose sys iotop
- diagnose sys link-monitor
- diagnose sys link-monitor filter
- diagnose sys link-monitor filter clear
- diagnose sys link-monitor filter name
- diagnose sys link-monitor interface
- diagnose sys link-monitor launch
- diagnose sys link-monitor sdwan-hc
- diagnose sys link-monitor sdwan-service
- diagnose sys link-monitor status
- diagnose sys mpstat
- diagnose sys nmi-watchdog
- diagnose sys nmi-watchdog disable
- diagnose sys nmi-watchdog enable
- diagnose sys nmi-watchdog reboot
- diagnose sys nmi-watchdog reboot disable
- diagnose sys nmi-watchdog reboot enable
- diagnose sys nmi-watchdog threshold
- diagnose sys ntp
- diagnose sys ntp status
- diagnose sys pair
- diagnose sys process
- diagnose sys process daemon-auto-restart
- diagnose sys process dump
- diagnose sys process nameof
- diagnose sys process pidof
- diagnose sys process pstack
- diagnose sys process sock-mem
- diagnose sys process socket
- diagnose sys process trace
- diagnose sys profile
- diagnose sys profile cpumask
- diagnose sys profile show
- diagnose sys profile show detail
- diagnose sys profile show order
- diagnose sys profile start
- diagnose sys profile step
- diagnose sys profile stop
- diagnose sys profile sysmap
- diagnose sys ptp
- diagnose sys ptp status
- diagnose sys scanunit
- diagnose sys scanunit auto-restart
- diagnose sys scanunit auto-restart requests
- diagnose sys scanunit auto-restart reset
- diagnose sys scanunit auto-restart status
- diagnose sys scanunit auto-restart time
- diagnose sys scanunit av-filetype-reuse
- diagnose sys scanunit av-filetype-reuse disable
- diagnose sys scanunit av-filetype-reuse enable
- diagnose sys scanunit bypass
- diagnose sys scanunit bypass clear
- diagnose sys scanunit bypass disable
- diagnose sys scanunit bypass disable category
- diagnose sys scanunit bypass disable category all
- diagnose sys scanunit bypass disable category av-engine
- diagnose sys scanunit bypass disable category scanunit
- diagnose sys scanunit bypass disable protocol
- diagnose sys scanunit bypass disable protocol all
- diagnose sys scanunit bypass disable protocol cifs
- diagnose sys scanunit bypass disable protocol ftp
- diagnose sys scanunit bypass disable protocol http
- diagnose sys scanunit bypass disable protocol imap
- diagnose sys scanunit bypass disable protocol nntp
- diagnose sys scanunit bypass disable protocol pop3
- diagnose sys scanunit bypass disable protocol smtp
- diagnose sys scanunit bypass enable
- diagnose sys scanunit bypass enable category
- diagnose sys scanunit bypass enable category all
- diagnose sys scanunit bypass enable category av-engine
- diagnose sys scanunit bypass enable category scanunit
- diagnose sys scanunit bypass enable protocol
- diagnose sys scanunit bypass enable protocol all
- diagnose sys scanunit bypass enable protocol cifs
- diagnose sys scanunit bypass enable protocol ftp
- diagnose sys scanunit bypass enable protocol http
- diagnose sys scanunit bypass enable protocol imap
- diagnose sys scanunit bypass enable protocol nntp
- diagnose sys scanunit bypass enable protocol pop3
- diagnose sys scanunit bypass enable protocol smtp
- diagnose sys scanunit bypass show
- diagnose sys scanunit cfg
- diagnose sys scanunit cfg clear
- diagnose sys scanunit cfg list
- diagnose sys scanunit crash-dump
- diagnose sys scanunit crash-dump clear
- diagnose sys scanunit crash-dump disable
- diagnose sys scanunit crash-dump enable
- diagnose sys scanunit crash-dump read
- diagnose sys scanunit debug
- diagnose sys scanunit debug all
- diagnose sys scanunit debug analytics
- diagnose sys scanunit debug antispam
- diagnose sys scanunit debug daemon
- diagnose sys scanunit debug dlp
- diagnose sys scanunit debug file-filter
- diagnose sys scanunit debug ia
- diagnose sys scanunit debug icb
- diagnose sys scanunit debug job
- diagnose sys scanunit debug level
- diagnose sys scanunit debug level error
- diagnose sys scanunit debug level info
- diagnose sys scanunit debug level verbose
- diagnose sys scanunit debug level warning
- diagnose sys scanunit debug outbreak-prevention
- diagnose sys scanunit debug quarantine
- diagnose sys scanunit debug reset
- diagnose sys scanunit debug sane
- diagnose sys scanunit debug show
- diagnose sys scanunit dlp
- diagnose sys scanunit dlp reset
- diagnose sys scanunit dlp status
- diagnose sys scanunit dlp threshold
- diagnose sys scanunit file-hash
- diagnose sys scanunit file-hash list
- diagnose sys scanunit file-hash list all
- diagnose sys scanunit file-hash list md5
- diagnose sys scanunit file-hash list sha1
- diagnose sys scanunit file-hash list sha256
- diagnose sys scanunit file-hash query
- diagnose sys scanunit file-hash query md5
- diagnose sys scanunit file-hash query sha1
- diagnose sys scanunit file-hash query sha256
- diagnose sys scanunit file-hash status
- diagnose sys scanunit filter
- diagnose sys scanunit filter clear
- diagnose sys scanunit filter list
- diagnose sys scanunit filter negate
- diagnose sys scanunit filter negate vd
- diagnose sys scanunit filter negate worker
- diagnose sys scanunit filter vd
- diagnose sys scanunit filter worker
- diagnose sys scanunit log
- diagnose sys scanunit log filter
- diagnose sys scanunit log filter clear
- diagnose sys scanunit log filter list
- diagnose sys scanunit log filter negate
- diagnose sys scanunit log filter negate vd
- diagnose sys scanunit log filter negate worker
- diagnose sys scanunit log filter vd
- diagnose sys scanunit log filter worker
- diagnose sys scanunit reload-avdb
- diagnose sys scanunit reload-aveng
- diagnose sys scanunit reload-fsa-ext
- diagnose sys scanunit restart
- diagnose sys scanunit simulate-crash
- diagnose sys scanunit simulate-crash lockup-workers
- diagnose sys scanunit simulate-crash lockup-workers all
- diagnose sys scanunit simulate-crash lockup-workers worker
- diagnose sys scanunit simulate-error
- diagnose sys scanunit simulate-error av-engine-delay
- diagnose sys scanunit simulate-error av-error
- diagnose sys scanunit simulate-error av-status
- diagnose sys scanunit simulate-error cdr-error
- diagnose sys scanunit simulate-error reset
- diagnose sys scanunit simulate-error scan-error-code
- diagnose sys scanunit simulate-error status
- diagnose sys scanunit stats
- diagnose sys scanunit stats all
- diagnose sys scanunit stats clear
- diagnose sys scanunit stats list
- diagnose sys scanunit valgrind
- diagnose sys scanunit valgrind disable
- diagnose sys scanunit valgrind enable
- diagnose sys scanunit valgrind log
- diagnose sys scanunit valgrind log clear
- diagnose sys scanunit valgrind log show
- diagnose sys scanunit valgrind memcheck
- diagnose sys scanunit valgrind memcheck_less
- diagnose sys scanunit valgrind status
- diagnose sys scanunit vdom-stats
- diagnose sys scanunit vdom-stats all
- diagnose sys scanunit vdom-stats clear
- diagnose sys scanunit vdom-stats clear-all
- diagnose sys scanunit vdom-stats list
- diagnose sys sdn
- diagnose sys sdn cache
- diagnose sys sdn status
- diagnose sys server-probe
- diagnose sys server-probe response
- diagnose sys session
- diagnose sys session clear
- diagnose sys session count
- diagnose sys session exp-stat
- diagnose sys session expectation
- diagnose sys session filter
- diagnose sys session filter clear
- diagnose sys session filter clear dintf
- diagnose sys session filter clear dport
- diagnose sys session filter clear dst
- diagnose sys session filter clear nsrc
- diagnose sys session filter clear policy
- diagnose sys session filter clear proto
- diagnose sys session filter clear proto-state
- diagnose sys session filter clear sintf
- diagnose sys session filter clear sport
- diagnose sys session filter clear src
- diagnose sys session filter dintf
- diagnose sys session filter dport
- diagnose sys session filter dst
- diagnose sys session filter nsrc
- diagnose sys session filter policy
- diagnose sys session filter proto
- diagnose sys session filter sintf
- diagnose sys session filter sport
- diagnose sys session filter src
- diagnose sys session full-stat
- diagnose sys session list
- diagnose sys session list-verbose
- diagnose sys session stat
- diagnose sys session ttl
- diagnose sys session6
- diagnose sys session6 clear
- diagnose sys session6 expectation
- diagnose sys session6 filter
- diagnose sys session6 filter clear
- diagnose sys session6 filter clear dintf
- diagnose sys session6 filter clear dport
- diagnose sys session6 filter clear dst
- diagnose sys session6 filter clear nsrc
- diagnose sys session6 filter clear policy
- diagnose sys session6 filter clear proto
- diagnose sys session6 filter clear proto-state
- diagnose sys session6 filter clear sintf
- diagnose sys session6 filter clear sport
- diagnose sys session6 filter clear src
- diagnose sys session6 filter clear vd
- diagnose sys session6 filter dintf
- diagnose sys session6 filter dport
- diagnose sys session6 filter dst
- diagnose sys session6 filter nsrc
- diagnose sys session6 filter policy
- diagnose sys session6 filter proto
- diagnose sys session6 filter sintf
- diagnose sys session6 filter sport
- diagnose sys session6 filter src
- diagnose sys session6 list
- diagnose sys session6 list-verbose
- diagnose sys tcp-option
- diagnose sys tcp-option disable
- diagnose sys tcp-option enable
- diagnose sys tcpsock
- diagnose sys tcpsock6
- diagnose sys top
- diagnose sys top-all
- diagnose sys top-fd
- diagnose sys top-fd detail
- diagnose sys top-mem
- diagnose sys top-mem detail
- diagnose sys top-sockmem
- diagnose sys traffic
- diagnose sys traffic app-stats
- diagnose sys traffic app-stats list
- diagnose sys udpsock
- diagnose sys udpsock6
- diagnose sys uuid
- diagnose sys uuid allow-manual-set
- diagnose sys uuid allow-manual-set disable
- diagnose sys uuid allow-manual-set enable
- diagnose sys uuid generate
- diagnose sys var-zone
- diagnose sys var-zone show
- diagnose sys vd
- diagnose sys vd add
- diagnose sys vd delete
- diagnose sys vd list
- diagnose sys vd set
- diagnose sys vd stats
- diagnose sys vlan
- diagnose sys vlan list
- diagnose sys vxlan
- diagnose sys vxlan fdb
- diagnose sys vxlan fdb list
diagnose sys botnet-domain
Botnet domain diagnostics.
diagnose sys botnet-domain
diagnose sys botnet-domain hit
Botnet domain hits.
diagnose sys botnet-domain hit
diagnose sys botnet-domain list
List botnet domain entry.
diagnose sys botnet-domain list
diagnose sys botnet-ip
Botnet IP diagnostics.
diagnose sys botnet-ip
diagnose sys botnet-ip find
Find botnet IP entry.
diagnose sys botnet-ip find <ip> <port> <proto>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<ip> |
IP address. |
string |
|
|
<port> |
Port number. |
string |
|
|
<proto> |
Protocol number. |
string |
|
diagnose sys botnet-ip flush
Flush botnet IP entry hit count data.
diagnose sys botnet-ip flush
diagnose sys botnet-ip hit
Show botnet IP entry hit count data.
diagnose sys botnet-ip hit
diagnose sys botnet-ip list
List botnet IP entry.
diagnose sys botnet-ip list <offset> <number>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<offset> |
Botnet IP entry offset. |
string |
|
|
<number> |
The number of botnet IP entries to display. |
string |
|
diagnose sys cmdb
CMDB related information.
diagnose sys cmdb
diagnose sys cmdb check-lock
Check CMDB lock.
diagnose sys cmdb check-lock
diagnose sys cmdb dump
Dump cmdb internal data.
diagnose sys cmdb dump
diagnose sys cmdb dump vdom
Dump vdom data.
diagnose sys cmdb dump vdom <global/vdom-name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<global/vdom-name> |
Dump global or vdom-name data details. |
string |
|
diagnose sys cmdb flag
CMDB related flags.
diagnose sys cmdb flag
diagnose sys cmdb flag info
CMDB related flags information.
diagnose sys cmdb flag info
diagnose sys cmdb flag reset
Reset CMDB related flags.
diagnose sys cmdb flag reset
diagnose sys cmdb flag reset script-running
Reset CMDB script-running flag.
diagnose sys cmdb flag reset script-running
diagnose sys cmdb info
CMDB information.
diagnose sys cmdb info
diagnose sys cmdb refcnt
Datasource reference count.
diagnose sys cmdb refcnt
diagnose sys cmdb refcnt reset
Reset reference count to be consistent with real reference.
diagnose sys cmdb refcnt reset <path.object.mkey> <tablename>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path.object.mkey> |
Table. |
string |
|
|
<tablename> |
Entry. |
string |
|
diagnose sys cmdb refcnt show
Show datasource reference details.
diagnose sys cmdb refcnt show <path.object.mkey> <tablename>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path.object.mkey> |
Table. |
string |
|
|
<tablename> |
Entry. |
string |
|
diagnose sys cmdb set-readlock
Set CMDB read lock.
diagnose sys cmdb set-readlock
diagnose sys cmdb unset-readlock
Unset CMDB read lock.
diagnose sys cmdb unset-readlock
diagnose sys cmdb-profile
Get CMDB profile information.
diagnose sys cmdb-profile
diagnose sys cmdb-profile info
Get CMDB profile shm info.
diagnose sys cmdb-profile info
diagnose sys cmdb-profile node
Get CMDB profile by node.
diagnose sys cmdb-profile node <path.object[.attribute]>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path.object[.attribute]> |
Path to object/attribute. |
string |
|
diagnose sys cmdb-profile reset
Reset CMDB profile shm info.
diagnose sys cmdb-profile reset
diagnose sys cmdb-profile top10
sort nodes by operator's time
diagnose sys cmdb-profile top10
diagnose sys cmdb-profile top10 average
sort nodes by operator's average time
diagnose sys cmdb-profile top10 average [n]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[n] |
get n nodes' profile (optional, default is 10) |
string |
|
diagnose sys cmdb-profile top10 total
sort nodes by operator's total time
diagnose sys cmdb-profile top10 total [n]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[n] |
get n nodes' profile (optional, default is 10) |
string |
|
diagnose sys config-transaction
Config transaction related information.
diagnose sys config-transaction
diagnose sys config-transaction show
Show config transaction information.
diagnose sys config-transaction show
diagnose sys config-transaction show entity-by-txn
Show configuration objects being configured by individual transactions.
diagnose sys config-transaction show entity-by-txn <txn-id>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<txn-id> |
Transaction ID. |
string |
|
diagnose sys config-transaction show mctx
Show mctx.
diagnose sys config-transaction show mctx
diagnose sys config-transaction show txn-cli-commands
Show CLI commands used in a given transaction.
diagnose sys config-transaction show txn-cli-commands <txn-id>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<txn-id> |
Transaction ID. |
string |
|
diagnose sys config-transaction show txn-entity
Show configuration objects being configured in transactions.
diagnose sys config-transaction show txn-entity
diagnose sys config-transaction show txn-info
Show config transaction details.
diagnose sys config-transaction show txn-info
diagnose sys config-transaction show txn-lock
Show transaction lock status.
diagnose sys config-transaction show txn-lock
diagnose sys config-transaction show txn-meta
Show config transaction meta information.
diagnose sys config-transaction show txn-meta
diagnose sys config-transaction status
Show config transaction status in current CLI.
diagnose sys config-transaction status
diagnose sys conntrack
conntrack diagnostics.
diagnose sys conntrack
diagnose sys conntrack clear
Clear all conntrack.
diagnose sys conntrack clear
diagnose sys conntrack count
Show number of conntrack.
diagnose sys conntrack count
diagnose sys conntrack list-dying4
List IPv4 dying conntrack.
diagnose sys conntrack list-dying4
diagnose sys conntrack list-dying6
List IPv6 dying conntrack.
diagnose sys conntrack list-dying6
diagnose sys conntrack list-unconfirmed4
List IPv4 unconfirmed conntrack.
diagnose sys conntrack list-unconfirmed4
diagnose sys conntrack list-unconfirmed6
List IPv6 unconfirmed conntrack.
diagnose sys conntrack list-unconfirmed6
diagnose sys conntrack list4
List IPv4 conntrack.
diagnose sys conntrack list4
diagnose sys conntrack list6
List IPv6 conntrack.
diagnose sys conntrack list6
diagnose sys conntrack stats
Show conntrack statistics.
diagnose sys conntrack stats
diagnose sys csf
Security Fabric diagnostics.
diagnose sys csf
diagnose sys csf authorization
Authorization requests and permits.
diagnose sys csf authorization
diagnose sys csf authorization accept
Authorize device to join CSF tree.
diagnose sys csf authorization accept <SN> [Name]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<SN> |
Serial number. |
string |
|
|
[Name] |
Optional entry name (if not passed SN is used). |
string |
|
diagnose sys csf authorization deny
Deny device from joining CSF tree.
diagnose sys csf authorization deny <SN> [Name]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<SN> |
Serial number. |
string |
|
|
[Name] |
Optional entry name (if not passed SN is used). |
string |
|
diagnose sys csf authorization pending-list
List of pending requests to join security fabric.
diagnose sys csf authorization pending-list
diagnose sys csf downstream
Show connected downstream FortiProxies.
diagnose sys csf downstream [-x] [-a]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[-x] |
Show encrypted tokens |
string |
|
|
[-a] |
Show all devices |
string |
|
diagnose sys csf downstream-devices
Show downstream fabric device.
diagnose sys csf downstream-devices <device type> [vdom] [group]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<device type> |
fabric device type (e.g. fortinac, fortimail, fortivoice, any). |
string |
|
|
[vdom] |
Connecting VDOM. |
string |
|
|
[group] |
CSF key group. |
string |
|
diagnose sys csf dynamic-sync-read
Read incoming dynamic sync data updates
diagnose sys csf dynamic-sync-read <count>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<count> |
Number of updates to read |
string |
|
diagnose sys csf dynamic-sync-request
Get the current dynamic sync data from csfd
diagnose sys csf dynamic-sync-request
diagnose sys csf dynamic-sync-update
Change the dynamic sync update data
diagnose sys csf dynamic-sync-update <content>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<content> |
New data content string |
string |
|
diagnose sys csf fabric-device
Debug fabric device handling.
diagnose sys csf fabric-device
diagnose sys csf fabric-device list
List all known fabric devices.
diagnose sys csf fabric-device list
diagnose sys csf file
csfd file management.
diagnose sys csf file
diagnose sys csf file cat
Dump file.
diagnose sys csf file cat <name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Name of the file to be dumped. |
string |
|
diagnose sys csf file top-mem
Display largest files.
diagnose sys csf file top-mem [count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[count] |
Number of files to be displayed ([1 - 20] default = 5). |
string |
|
diagnose sys csf forticloud-id-list
List of FortiCloud IDs of downstreams.
diagnose sys csf forticloud-id-list
diagnose sys csf get-bulk-global-view
Request global view file
diagnose sys csf get-bulk-global-view [refresh seconds]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[refresh seconds] |
Acceptable age for cached global file in seconds. |
string |
|
diagnose sys csf global
Show a summary of all connected members in Security Fabric.
diagnose sys csf global
diagnose sys csf initialize-cmd
send an init command for merge.
diagnose sys csf initialize-cmd <path> <cmdb_path> <cmdb_table>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path> |
fabric path made of serial numbers e.g: SNCURRENT:SNMIDDLE:SNDESTINATION. |
string |
|
|
<cmdb_path> |
path for cmdb table |
string |
|
|
<cmdb_table> |
cmdb table name |
string |
|
diagnose sys csf license
Show a summary of FPX license sharing in the cluster.
diagnose sys csf license
diagnose sys csf merge-cmd
send a merge command to downstream.
diagnose sys csf merge-cmd <path> <cmdb_path> <cmdb_table> <key> <new_key>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path> |
fabric path made of serial numbers e.g: SNCURRENT:SNMIDDLE:SNDESTINATION. |
string |
|
|
<cmdb_path> |
path for cmdb table |
string |
|
|
<cmdb_table> |
cmdb table name |
string |
|
|
<key> |
current entry name |
string |
|
|
<new_key> |
new entry name |
string |
|
diagnose sys csf neighbor
CSF enabled devices in adjacency.
diagnose sys csf neighbor
diagnose sys csf neighbor flush
Clear discovered physical addresses of adjacent devices.
diagnose sys csf neighbor flush [interface]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[interface] |
Receiving local interface name. |
string |
|
diagnose sys csf neighbor list
List discovered physical addresses of adjacent devices.
diagnose sys csf neighbor list [interface]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[interface] |
Receiving local interface name. |
string |
|
diagnose sys csf query
Query through CSF.
diagnose sys csf query <path> [-p]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<path> |
FGT1(SN):FGT2(SN):...:FGTn(SN) |
string |
|
|
[-p] |
partial process. |
string |
|
diagnose sys csf send-test-log-upstream
Send a test log to upstream
diagnose sys csf send-test-log-upstream
diagnose sys csf tunnel-test-listener
Test the reliable tunnel, listener side
diagnose sys csf tunnel-test-listener
diagnose sys csf tunnel-test-sender
Test the reliable tunnel, sender side
diagnose sys csf tunnel-test-sender <target-sn> <msg-content> <repeats>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<target-sn> |
SN to send the message to |
string |
|
|
<msg-content> |
Content of the message |
string |
|
|
<repeats> |
Number of times to repeat the message |
string |
|
diagnose sys csf upstream
Show connected upstream FortiProxies.
diagnose sys csf upstream
diagnose sys csf versions
get latest incremental version of CSF groups.
diagnose sys csf versions
diagnose sys dayst-info
Daylight saving time information.
diagnose sys dayst-info <timezone-index> [year]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<timezone-index> |
Timezone index. |
string |
|
|
[year] |
year |
string |
|
diagnose sys device
Virtual domain device management.
diagnose sys device
diagnose sys device add
Add device to Virtual Domain.
diagnose sys device add <vdname> <devname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
|
<devname> |
Device Name. |
string |
|
diagnose sys device delete
Delete device from Virtual Domain.
diagnose sys device delete <vdname> <devname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
|
<devname> |
Device Name. |
string |
|
diagnose sys device list
List devices in Virtual Domain.
diagnose sys device list <vdname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
diagnose sys external-resource
External resource.
diagnose sys external-resource
diagnose sys external-resource list
Dump external resource file by name.
diagnose sys external-resource list <name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Name of external resource. |
string |
|
diagnose sys external-resource push-add
Add entry to external resource set to push updates.
diagnose sys external-resource push-add
diagnose sys external-resource push-api-json-commands
Test push commands JSON API
diagnose sys external-resource push-api-json-commands <COMMANDS-JSON>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<COMMANDS-JSON> |
JSON string for commands. |
string |
|
diagnose sys external-resource push-remove
Remove entry to push external resource set to push updates.
diagnose sys external-resource push-remove
diagnose sys external-resource push-snapshot
Overwrite external resource set to push updates.
diagnose sys external-resource push-snapshot
diagnose sys external-resource stats
Display external resource file info.
diagnose sys external-resource stats <name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Name of external resource. |
string |
|
diagnose sys filesystem
File system.
diagnose sys filesystem
diagnose sys filesystem hash
Generate hash for files within the filesystem.
diagnose sys filesystem hash
diagnose sys filesystem last-modified-files
List the last modified files.
diagnose sys filesystem last-modified-files [path] [number]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[path] |
Path for listing modified files (default = /data). |
string |
|
|
[number] |
Number of files to list (default = 10). |
string |
|
diagnose sys filesystem tree
List the top files/folders tree.
diagnose sys filesystem tree [path] [number]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[path] |
Path for listing files/folder (default = /var/log). |
string |
|
|
[number] |
Number of files in each current folder and subfolder to be listed (default = 10). |
string |
|
diagnose sys fips
FIPS mode.
diagnose sys fips
diagnose sys fips error-mode
Go to error mode.
diagnose sys fips error-mode
diagnose sys fips kat-error
Force test failure at next self-test.
diagnose sys fips kat-error <KAT>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<KAT> |
KAT, empty to display available values. |
string |
|
diagnose sys ha
High availability.
diagnose sys ha
diagnose sys ha check-vc
check-vc
diagnose sys ha check-vc
diagnose sys ha checksum
checksum.
diagnose sys ha checksum
diagnose sys ha checksum cached
Show HA cached checksum.
diagnose sys ha checksum cached <global/vdom-name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<global/vdom-name> |
Show global or a specific vdom's cached HA checksum. |
string |
|
diagnose sys ha checksum cluster
Show HA cluster checksum by serial number.
diagnose sys ha checksum cluster
diagnose sys ha checksum log
Enable/disable log.
diagnose sys ha checksum log
diagnose sys ha checksum log clear
Clear log.
diagnose sys ha checksum log clear
diagnose sys ha checksum log disable
Disable log.
diagnose sys ha checksum log disable
diagnose sys ha checksum log enable
Enable log.
diagnose sys ha checksum log enable
diagnose sys ha checksum recalculate
Re-calculate HA checksum.
diagnose sys ha checksum recalculate <Enter> or <global/vdom-name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Enter> or <global/vdom-name> |
<Enter> to re-calculate all checksums, or global/vdom-name to re-calculate global or a specific vdom HA checksum. |
string |
|
diagnose sys ha checksum show
Show HA checksum.
diagnose sys ha checksum show <Enter> or <global/vdom-name> <Enter> or <object-fullpath> <Enter> or <entry-name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Enter> or <global/vdom-name> |
<Enter> to show system checksum; <global/vdom-name> to show global/vdom-name detail checksum. |
string |
|
|
<Enter> or <object-fullpath> |
<Enter> to show objects checksum; <object-fullpath> to show individual object's detail checksum. |
string |
|
|
<Enter> or <entry-name> |
<Enter> to show the specific object's detail checksum; <entry-name> to show a single entry's detail checksum. |
string |
|
diagnose sys ha checksum show-nonsync
Show non-sync HA checksum.
diagnose sys ha checksum show-nonsync
diagnose sys ha checksum test
test.
diagnose sys ha checksum test
diagnose sys ha dump-by
Dump HA data by name.
diagnose sys ha dump-by
diagnose sys ha dump-by debug-zone
Dump HA debug zone.
diagnose sys ha dump-by debug-zone
diagnose sys ha dump-by device
Dump HA device.
diagnose sys ha dump-by device
diagnose sys ha dump-by group
Dump all group.
diagnose sys ha dump-by group
diagnose sys ha dump-by kernel
Dump HA kernel info.
diagnose sys ha dump-by kernel
diagnose sys ha dump-by rcache
Dump rcache.
diagnose sys ha dump-by rcache
diagnose sys ha dump-by vcluster
Dump all vcluster.
diagnose sys ha dump-by vcluster
diagnose sys ha dump-by vdom
Dump HA vdom info.
diagnose sys ha dump-by vdom
diagnose sys ha extfile-sig
Dump extfile's signature.
diagnose sys ha extfile-sig
diagnose sys ha fgsp-zone
FGSP zone information.
diagnose sys ha fgsp-zone
diagnose sys ha fib
FIB information.
diagnose sys ha fib
diagnose sys ha hactx-stats
HA context statistics
diagnose sys ha hactx-stats
diagnose sys ha hactx-stats clear
HA context statistics
diagnose sys ha hactx-stats clear
diagnose sys ha hadiff
HA diff debug.
diagnose sys ha hadiff
diagnose sys ha hadiff log
Enable/disable log.
diagnose sys ha hadiff log
diagnose sys ha hadiff log clear
Clear log.
diagnose sys ha hadiff log clear
diagnose sys ha hadiff log disable
Disable log.
diagnose sys ha hadiff log disable
diagnose sys ha hadiff log enable
Enable log.
diagnose sys ha hadiff log enable
diagnose sys ha hadiff max-sync-turns
Set/get max number of sync turns.
diagnose sys ha hadiff max-sync-turns <integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<integer> |
Set/get max number of sync turns. |
string |
|
diagnose sys ha hadiff max-unsync-wait
Set/get max unsync wait times.
diagnose sys ha hadiff max-unsync-wait <integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<integer> |
Maximum unsync wait times. |
string |
|
diagnose sys ha hadiff status
HA diff status.
diagnose sys ha hadiff status
diagnose sys ha hasync-conn-max-buf
Set the hasync connection maximum buffer number.
diagnose sys ha hasync-conn-max-buf <hasync-conn-max-buf>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<hasync-conn-max-buf> |
Max number of buffers. |
string |
|
diagnose sys ha hasync-stats
hasync daemon stats.
diagnose sys ha hasync-stats
diagnose sys ha hasync-stats all
Display hasync all objects' stats.
diagnose sys ha hasync-stats all
diagnose sys ha hasync-stats by-object
Display hasync stats by object.
diagnose sys ha hasync-stats by-object <integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<integer> |
Object number. |
string |
|
diagnose sys ha hasync-stats most-recent
Display hasync objects recent stats.
diagnose sys ha hasync-stats most-recent [integer]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[integer] |
Most recent # of objects to display. |
string |
|
diagnose sys ha hasync-stats most-time
Display hasync objects ranked by total time.
diagnose sys ha hasync-stats most-time [interger]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[interger] |
# of top objects to display. |
string |
|
diagnose sys ha heartbeat
Show kernel heartbeat stats.
diagnose sys ha heartbeat
diagnose sys ha history
Cluster history information.
diagnose sys ha history
diagnose sys ha history clear
Clear cluster history.
diagnose sys ha history clear
diagnose sys ha history read
Display cluster history.
diagnose sys ha history read
diagnose sys ha mac
Mac Information.
diagnose sys ha mac
diagnose sys ha pingsvr-secondary-force-reset
Reset HA up time.
diagnose sys ha pingsvr-secondary-force-reset
diagnose sys ha recalculate-extfile-signature
Recalculate external files signature in hasync daemon.
diagnose sys ha recalculate-extfile-signature
diagnose sys ha reset-health-status
Reset HA health status.
diagnose sys ha reset-health-status
diagnose sys ha reset-uptime
Reset HA up time.
diagnose sys ha reset-uptime
diagnose sys ha session-sync-dev
Session sync ports.
diagnose sys ha session-sync-dev
diagnose sys ha session-sync-dev clear
Clear session sync ports.
diagnose sys ha session-sync-dev clear
diagnose sys ha session-sync-dev set
Configure session sync ports.
diagnose sys ha session-sync-dev set
diagnose sys ha standalone-peers
Standalone peers on kernel.
diagnose sys ha standalone-peers
diagnose sys ha standalone-peers reset-stats
Reset standalone peers session/packet type counters in kernel.
diagnose sys ha standalone-peers reset-stats
diagnose sys ha stats
statistics
diagnose sys ha stats
diagnose sys ha status
status
diagnose sys ha status
diagnose sys ha sync-stats
Dump HA sync statistics.
diagnose sys ha sync-stats
diagnose sys ha sync-stats-reset
Reset HA sync statistics.
diagnose sys ha sync-stats-reset
diagnose sys ha vlan-hb-monitor
Dump vlan heartbeat monitor list.
diagnose sys ha vlan-hb-monitor
diagnose sys icap-remote-server
Display remote icap servers status.
diagnose sys icap-remote-server
diagnose sys icap-remote-server status
List remote icap servers status.
diagnose sys icap-remote-server status
diagnose sys iotop
Show disk-accessing processes.
diagnose sys iotop <interval>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<interval> |
Print interval in seconds (default to 5). Accept value from 5 to 3600. |
string |
|
diagnose sys link-monitor
Link Monitor.
diagnose sys link-monitor
diagnose sys link-monitor filter
Filter link-monitor
diagnose sys link-monitor filter
diagnose sys link-monitor filter clear
Clear all filters.
diagnose sys link-monitor filter clear
diagnose sys link-monitor filter name
Link monitor names <name>.
diagnose sys link-monitor filter name <name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Link monitor name. |
string |
|
diagnose sys link-monitor interface
interface quality.
diagnose sys link-monitor interface <name> <childname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Show details of an interface entry. |
string |
|
|
<childname> |
Child interface name. |
string |
|
diagnose sys link-monitor launch
Launching a link monitor entry manually.
diagnose sys link-monitor launch <entry name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<entry name> |
Entry. |
string |
|
diagnose sys link-monitor sdwan-hc
SD-WAN health-check monitors.
diagnose sys link-monitor sdwan-hc <name> <seq>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Health check name. |
string |
|
|
<seq> |
Sequence number. |
string |
|
diagnose sys link-monitor sdwan-service
SD-WAN rule monitors.
diagnose sys link-monitor sdwan-service <name> <seq>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name> |
Heach check name. |
string |
|
|
<seq> |
Sequence number. |
string |
|
diagnose sys link-monitor status
status
diagnose sys link-monitor status <name | all>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<name | all> |
Show details of monitor entry. |
string |
|
diagnose sys mpstat
mpstat
diagnose sys mpstat <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
Delay in seconds (default 5). |
string |
|
diagnose sys nmi-watchdog
nmi-watchdog
diagnose sys nmi-watchdog
diagnose sys nmi-watchdog disable
Disable NMI watchdog.
diagnose sys nmi-watchdog disable
diagnose sys nmi-watchdog enable
Enable NMI watchdog.
diagnose sys nmi-watchdog enable
diagnose sys nmi-watchdog reboot
reboot on lockup detection.
diagnose sys nmi-watchdog reboot
diagnose sys nmi-watchdog reboot disable
Disable reboot on lockup detection.
diagnose sys nmi-watchdog reboot disable
diagnose sys nmi-watchdog reboot enable
Enable reboot on lockup detection.
diagnose sys nmi-watchdog reboot enable
diagnose sys nmi-watchdog threshold
Duration of lockup that register as a detection.
diagnose sys nmi-watchdog threshold <seconds>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<seconds> |
(6 to 40 seconds) |
string |
|
diagnose sys ntp
NTP daemon command.
diagnose sys ntp
diagnose sys ntp status
List NTP servers information.
diagnose sys ntp status
diagnose sys pair
Pair device.
diagnose sys pair
diagnose sys process
Dump process stack.
diagnose sys process
diagnose sys process daemon-auto-restart
Set daemon respawn behaviour.
diagnose sys process daemon-auto-restart <action> <daemon>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<action> |
(enable|disable) |
string |
|
|
<daemon> |
Daemon name. |
string |
|
diagnose sys process dump
Dump process kernel stack.
diagnose sys process dump <pid>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<pid> |
PID of the process to dump. |
string |
|
diagnose sys process nameof
List name of process with a specific PID.
diagnose sys process nameof <integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<integer> |
PID to find the process name. |
string |
|
diagnose sys process pidof
List PIDs of processes with a specific name.
diagnose sys process pidof <string>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<string> |
Name to find PIDs for. |
string |
|
diagnose sys process pstack
Dump process userspace stack.
diagnose sys process pstack <pid>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<pid> |
PID of the process to dump. |
string |
|
diagnose sys process sock-mem
Show process socket mem usage.
diagnose sys process sock-mem
diagnose sys process socket
Find PID of processes which owns the socket.
diagnose sys process socket <socket-inode>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<socket-inode> |
Socket to find PID for. |
string |
|
diagnose sys process trace
Sample process instructions.
diagnose sys process trace
diagnose sys profile
kernel profiling
diagnose sys profile
diagnose sys profile cpumask
profile which CPUs
diagnose sys profile cpumask
diagnose sys profile show
show kernel profiling result
diagnose sys profile show
diagnose sys profile show detail
show detail of kernel profiling
diagnose sys profile show detail
diagnose sys profile show order
order kernel profiling result
diagnose sys profile show order
diagnose sys profile start
start kernel profiling data
diagnose sys profile start
diagnose sys profile step
set profile step
diagnose sys profile step <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
Profile step for CPU profiling. Argument should be a power of two between 2 to 32 |
string |
|
diagnose sys profile stop
copy kernel profiling data
diagnose sys profile stop
diagnose sys profile sysmap
show kernel sysmap
diagnose sys profile sysmap
diagnose sys ptp
PTP daemon command.
diagnose sys ptp
diagnose sys ptp status
List PTP information.
diagnose sys ptp status
diagnose sys scanunit
Scanunit diagnostics.
diagnose sys scanunit
diagnose sys scanunit auto-restart
Auto-restart settings.
diagnose sys scanunit auto-restart
diagnose sys scanunit auto-restart requests
Number of scan requests before restarting.
diagnose sys scanunit auto-restart requests <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
Number of requests before restarting (0 disables auto restart). |
string |
|
diagnose sys scanunit auto-restart reset
Reset auto restart settings.
diagnose sys scanunit auto-restart reset
diagnose sys scanunit auto-restart status
Show auto restart settings.
diagnose sys scanunit auto-restart status
diagnose sys scanunit auto-restart time
Minimum interval in seconds between restarting workers.
diagnose sys scanunit auto-restart time <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
Minimum interval in seconds between restarting workers. |
string |
|
diagnose sys scanunit av-filetype-reuse
Enable/disable AV filetype reuse.
diagnose sys scanunit av-filetype-reuse
diagnose sys scanunit av-filetype-reuse disable
Disable scanunit AV filetype reuse.
diagnose sys scanunit av-filetype-reuse disable
diagnose sys scanunit av-filetype-reuse enable
Enable scanunit AV filetype reuse.
diagnose sys scanunit av-filetype-reuse enable
diagnose sys scanunit bypass
Bypass setting.
diagnose sys scanunit bypass
diagnose sys scanunit bypass clear
Clear bypass settings.
diagnose sys scanunit bypass clear
diagnose sys scanunit bypass disable
Disable bypass setiings.
diagnose sys scanunit bypass disable
diagnose sys scanunit bypass disable category
Disable category bypass.
diagnose sys scanunit bypass disable category
diagnose sys scanunit bypass disable category all
Bypass all.
diagnose sys scanunit bypass disable category all
diagnose sys scanunit bypass disable category av-engine
Bypass AV engine.
diagnose sys scanunit bypass disable category av-engine
diagnose sys scanunit bypass disable category scanunit
Bypass scanunit.
diagnose sys scanunit bypass disable category scanunit
diagnose sys scanunit bypass disable protocol
Disable protocol bypass.
diagnose sys scanunit bypass disable protocol
diagnose sys scanunit bypass disable protocol all
All proxy protocols
diagnose sys scanunit bypass disable protocol all
diagnose sys scanunit bypass disable protocol cifs
CIFS protocol
diagnose sys scanunit bypass disable protocol cifs
diagnose sys scanunit bypass disable protocol ftp
FTP(S) protocol
diagnose sys scanunit bypass disable protocol ftp
diagnose sys scanunit bypass disable protocol http
HTTP(S) protocol
diagnose sys scanunit bypass disable protocol http
diagnose sys scanunit bypass disable protocol imap
IMAP(S) protocol
diagnose sys scanunit bypass disable protocol imap
diagnose sys scanunit bypass disable protocol nntp
NNTP protocol
diagnose sys scanunit bypass disable protocol nntp
diagnose sys scanunit bypass disable protocol pop3
POP3(S) protocol
diagnose sys scanunit bypass disable protocol pop3
diagnose sys scanunit bypass disable protocol smtp
SMTP(S) protocol
diagnose sys scanunit bypass disable protocol smtp
diagnose sys scanunit bypass enable
Enable bypass settings.
diagnose sys scanunit bypass enable
diagnose sys scanunit bypass enable category
Enable category bypass.
diagnose sys scanunit bypass enable category
diagnose sys scanunit bypass enable category all
Bypass all.
diagnose sys scanunit bypass enable category all
diagnose sys scanunit bypass enable category av-engine
Bypass AV engine.
diagnose sys scanunit bypass enable category av-engine
diagnose sys scanunit bypass enable category scanunit
Bypass scanunit.
diagnose sys scanunit bypass enable category scanunit
diagnose sys scanunit bypass enable protocol
Enable protocol bypass.
diagnose sys scanunit bypass enable protocol
diagnose sys scanunit bypass enable protocol all
All proxy protocols
diagnose sys scanunit bypass enable protocol all
diagnose sys scanunit bypass enable protocol cifs
CIFS protocol
diagnose sys scanunit bypass enable protocol cifs
diagnose sys scanunit bypass enable protocol ftp
FTP(S) protocol
diagnose sys scanunit bypass enable protocol ftp
diagnose sys scanunit bypass enable protocol http
HTTP(S) protocol
diagnose sys scanunit bypass enable protocol http
diagnose sys scanunit bypass enable protocol imap
IMAP(S) protocol
diagnose sys scanunit bypass enable protocol imap
diagnose sys scanunit bypass enable protocol nntp
NNTP protocol
diagnose sys scanunit bypass enable protocol nntp
diagnose sys scanunit bypass enable protocol pop3
POP3(S) protocol
diagnose sys scanunit bypass enable protocol pop3
diagnose sys scanunit bypass enable protocol smtp
SMTP(S) protocol
diagnose sys scanunit bypass enable protocol smtp
diagnose sys scanunit bypass show
Show bypass settings.
diagnose sys scanunit bypass show
diagnose sys scanunit cfg
Cached configuration.
diagnose sys scanunit cfg
diagnose sys scanunit cfg clear
Clear cached configuration.
diagnose sys scanunit cfg clear
diagnose sys scanunit cfg list
List the key for each cached configuration entry.
diagnose sys scanunit cfg list
diagnose sys scanunit crash-dump
Enable/disable crash dump.
diagnose sys scanunit crash-dump
diagnose sys scanunit crash-dump clear
Clear scanunit crash dump.
diagnose sys scanunit crash-dump clear
diagnose sys scanunit crash-dump disable
Disable scanunit crash dump.
diagnose sys scanunit crash-dump disable
diagnose sys scanunit crash-dump enable
Enable scanunit crash dump.
diagnose sys scanunit crash-dump enable
diagnose sys scanunit crash-dump read
Read the last crash dump.
diagnose sys scanunit crash-dump read
diagnose sys scanunit debug
Debug settings.
diagnose sys scanunit debug
diagnose sys scanunit debug all
Enable all debug categories.
diagnose sys scanunit debug all <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug analytics
Enable analytics category.
diagnose sys scanunit debug analytics <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug antispam
Enable antispam category.
diagnose sys scanunit debug antispam <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug daemon
Enable scanunit daemon category.
diagnose sys scanunit debug daemon <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug dlp
Enable DLP category.
diagnose sys scanunit debug dlp <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug file-filter
Enable file filter category.
diagnose sys scanunit debug file-filter <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug ia
Enable IA category.
diagnose sys scanunit debug ia <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug icb
Enable ICB category.
diagnose sys scanunit debug icb <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug job
Enable scanunit job category.
diagnose sys scanunit debug job <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug level
Set debug level.
diagnose sys scanunit debug level
diagnose sys scanunit debug level error
Error level.
diagnose sys scanunit debug level error
diagnose sys scanunit debug level info
Info level.
diagnose sys scanunit debug level info
diagnose sys scanunit debug level verbose
Verbose level.
diagnose sys scanunit debug level verbose
diagnose sys scanunit debug level warning
Warning level.
diagnose sys scanunit debug level warning
diagnose sys scanunit debug outbreak-prevention
Enable outbreak prevention category.
diagnose sys scanunit debug outbreak-prevention <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug quarantine
Enable quarantine category.
diagnose sys scanunit debug quarantine <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug reset
Reset debug category and level.
diagnose sys scanunit debug reset
diagnose sys scanunit debug sane
Enable a sane group of categories.
diagnose sys scanunit debug sane <status>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<status> |
Enable or disable debug category. |
string |
|
diagnose sys scanunit debug show
Show current debug settings.
diagnose sys scanunit debug show
diagnose sys scanunit dlp
DLP data size scanning threshold settings.
diagnose sys scanunit dlp
diagnose sys scanunit dlp reset
Reset DLP data size scanning threshold value.
diagnose sys scanunit dlp reset
diagnose sys scanunit dlp status
Show DLP data size scanning threshold value.
diagnose sys scanunit dlp status
diagnose sys scanunit dlp threshold
Set DLP data size scanning threshold in bytes (0 = default).
diagnose sys scanunit dlp threshold <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
DLP data size scanning threshold. |
string |
|
diagnose sys scanunit file-hash
File hash list.
diagnose sys scanunit file-hash
diagnose sys scanunit file-hash list
List malware hashes.
diagnose sys scanunit file-hash list
diagnose sys scanunit file-hash list all
List all malware hashes.
diagnose sys scanunit file-hash list all
diagnose sys scanunit file-hash list md5
List md5 malware hashes.
diagnose sys scanunit file-hash list md5
diagnose sys scanunit file-hash list sha1
List sha1 malware hashes.
diagnose sys scanunit file-hash list sha1
diagnose sys scanunit file-hash list sha256
List sha256 malware hashes.
diagnose sys scanunit file-hash list sha256
diagnose sys scanunit file-hash query
Query a malware hash.
diagnose sys scanunit file-hash query
diagnose sys scanunit file-hash query md5
Query an md5 malware hash.
diagnose sys scanunit file-hash query md5 <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
md5 hash |
string |
|
diagnose sys scanunit file-hash query sha1
Query a sha1 malware hash.
diagnose sys scanunit file-hash query sha1 <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
sha1 hash |
string |
|
diagnose sys scanunit file-hash query sha256
Query a sha256 malware hash.
diagnose sys scanunit file-hash query sha256 <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
sha256 hash |
string |
|
diagnose sys scanunit file-hash status
File hash database status.
diagnose sys scanunit file-hash status
diagnose sys scanunit filter
Diagnostics filter.
diagnose sys scanunit filter
diagnose sys scanunit filter clear
Clear the current filter.
diagnose sys scanunit filter clear
diagnose sys scanunit filter list
Display the current filter.
diagnose sys scanunit filter list
diagnose sys scanunit filter negate
Negate the specified filter parameter.
diagnose sys scanunit filter negate
diagnose sys scanunit filter negate vd
Negate virtual domain.
diagnose sys scanunit filter negate vd
diagnose sys scanunit filter negate worker
Negate worker ID.
diagnose sys scanunit filter negate worker
diagnose sys scanunit filter vd
Index of virtual domain. -1 matches all.
diagnose sys scanunit filter vd <index>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<index> |
Index of virtual domain. -1 matches all. |
string |
|
diagnose sys scanunit filter worker
ID of worker or "m" for manager. Invalid ID matches all.
diagnose sys scanunit filter worker <id>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<id> |
ID of worker or "m" for manager. Invalid ID matches all. |
string |
|
diagnose sys scanunit log
Logging diagnostics.
diagnose sys scanunit log
diagnose sys scanunit log filter
Debug log filter.
diagnose sys scanunit log filter
diagnose sys scanunit log filter clear
Clear the current filter.
diagnose sys scanunit log filter clear
diagnose sys scanunit log filter list
Display the current filter.
diagnose sys scanunit log filter list
diagnose sys scanunit log filter negate
Negate the specified filter parameter.
diagnose sys scanunit log filter negate
diagnose sys scanunit log filter negate vd
Negate virtual domain.
diagnose sys scanunit log filter negate vd
diagnose sys scanunit log filter negate worker
Negate worker ID.
diagnose sys scanunit log filter negate worker
diagnose sys scanunit log filter vd
Index of virtual domain. -1 matches all.
diagnose sys scanunit log filter vd <index>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<index> |
Index of virtual domain. -1 matches all. |
string |
|
diagnose sys scanunit log filter worker
ID of worker or "m" for manager. Invalid ID matches all.
diagnose sys scanunit log filter worker <id>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<id> |
ID of worker or "m" for manager. Invalid ID matches all. |
string |
|
diagnose sys scanunit reload-avdb
Reload AVDB.
diagnose sys scanunit reload-avdb
diagnose sys scanunit reload-aveng
Reload AV engine.
diagnose sys scanunit reload-aveng
diagnose sys scanunit reload-fsa-ext
Reload FSA extensions list.
diagnose sys scanunit reload-fsa-ext
diagnose sys scanunit restart
Restart scanunit.
diagnose sys scanunit restart
diagnose sys scanunit simulate-crash
Simulate scanunit crashes.
diagnose sys scanunit simulate-crash
diagnose sys scanunit simulate-crash lockup-workers
Simulate locked up scanunit workers.
diagnose sys scanunit simulate-crash lockup-workers
diagnose sys scanunit simulate-crash lockup-workers all
Lock up all workers.
diagnose sys scanunit simulate-crash lockup-workers all
diagnose sys scanunit simulate-crash lockup-workers worker
Lock up worker <id>.
diagnose sys scanunit simulate-crash lockup-workers worker <id>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<id> |
ID of worker to lock up. |
string |
|
diagnose sys scanunit simulate-error
Simulate scanunit errors.
diagnose sys scanunit simulate-error
diagnose sys scanunit simulate-error av-engine-delay
Add delay in AV engine filetype callback
diagnose sys scanunit simulate-error av-engine-delay <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
Delay (in seconds) to introduce in AV engine filetype callback |
string |
|
diagnose sys scanunit simulate-error av-error
Simulate AV engine error codes
diagnose sys scanunit simulate-error av-error <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
AV engine error code, interpreted as bitmask. |
string |
|
diagnose sys scanunit simulate-error av-status
Simulate AV engine status codes.
diagnose sys scanunit simulate-error av-status <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
AV engine status code. (-1 == INFECTED_ERROR, 1 == INFECTED_VIRUS, etc.) |
string |
|
diagnose sys scanunit simulate-error cdr-error
Simulate CDR engine internal error when active content detected.
diagnose sys scanunit simulate-error cdr-error
diagnose sys scanunit simulate-error reset
Reset all error simulation settings.
diagnose sys scanunit simulate-error reset
diagnose sys scanunit simulate-error scan-error-code
Simulate scanunit scan error.
diagnose sys scanunit simulate-error scan-error-code <Integer>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<Integer> |
Scanunit error code (negated) (e.g., 0 = none, 3 = invalid infection pointer, 5 = scanunit crash). |
string |
|
diagnose sys scanunit simulate-error status
Show error simulation settings.
diagnose sys scanunit simulate-error status
diagnose sys scanunit stats
Statistics.
diagnose sys scanunit stats
diagnose sys scanunit stats all
Per-process statistics.
diagnose sys scanunit stats all
diagnose sys scanunit stats clear
Clear all statistics.
diagnose sys scanunit stats clear
diagnose sys scanunit stats list
List statistics.
diagnose sys scanunit stats list
diagnose sys scanunit valgrind
Valgrind analysis.
diagnose sys scanunit valgrind
diagnose sys scanunit valgrind disable
Force daemon to restart.
diagnose sys scanunit valgrind disable
diagnose sys scanunit valgrind enable
Force daemon to restart.
diagnose sys scanunit valgrind enable
diagnose sys scanunit valgrind log
Valgrind logs.
diagnose sys scanunit valgrind log
diagnose sys scanunit valgrind log clear
Clear logs.
diagnose sys scanunit valgrind log clear
diagnose sys scanunit valgrind log show
Show logs.
diagnose sys scanunit valgrind log show
diagnose sys scanunit valgrind memcheck
Force daemon to restart.
diagnose sys scanunit valgrind memcheck
diagnose sys scanunit valgrind memcheck_less
Force daemon to restart.
diagnose sys scanunit valgrind memcheck_less
diagnose sys scanunit valgrind status
Show valgrind status.
diagnose sys scanunit valgrind status
diagnose sys scanunit vdom-stats
Current VDOM statistics.
diagnose sys scanunit vdom-stats
diagnose sys scanunit vdom-stats all
List all VDOM statistics.
diagnose sys scanunit vdom-stats all
diagnose sys scanunit vdom-stats clear
Clear current VDOM statistics.
diagnose sys scanunit vdom-stats clear
diagnose sys scanunit vdom-stats clear-all
Clear all VDOM statistics.
diagnose sys scanunit vdom-stats clear-all
diagnose sys scanunit vdom-stats list
List current VDOM statistics.
diagnose sys scanunit vdom-stats list
diagnose sys sdn
SDN Connector diagnostics.
diagnose sys sdn
diagnose sys sdn cache
Show SDN Connector cache.
diagnose sys sdn cache <sdn-data-type> <sdn-connector-name>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<sdn-data-type> |
Specify the data type of the SDN Connector: address/service. |
string |
|
|
<sdn-connector-name> |
Specify the name of the SDN connector. |
string |
|
diagnose sys sdn status
Show SDN Connector status.
diagnose sys sdn status <sdn-connector-name> <server-ip-address>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<sdn-connector-name> |
Specify the name of the SDN Connector. |
string |
|
|
<server-ip-address> |
Specify the IP address of the SDN connector. |
string |
|
diagnose sys server-probe
Server probe.
diagnose sys server-probe
diagnose sys server-probe response
Probe response.
diagnose sys server-probe response
diagnose sys session
IPv4 session.
diagnose sys session
diagnose sys session clear
Clear the sessions defined by filter.
diagnose sys session clear
diagnose sys session count
Show number of sessions.
diagnose sys session count
diagnose sys session exp-stat
Expectation session statistics.
diagnose sys session exp-stat
diagnose sys session expectation
List expectation session.
diagnose sys session expectation
diagnose sys session filter
List session with filters.
diagnose sys session filter
diagnose sys session filter clear
Clear session filter.
diagnose sys session filter clear
diagnose sys session filter clear dintf
Clear destination interface filter.
diagnose sys session filter clear dintf
diagnose sys session filter clear dport
Clear destination port filter.
diagnose sys session filter clear dport
diagnose sys session filter clear dst
Clear destination IP filter.
diagnose sys session filter clear dst
diagnose sys session filter clear nsrc
clear NAT'd source IP filter
diagnose sys session filter clear nsrc
diagnose sys session filter clear policy
Clear policy ID filter.
diagnose sys session filter clear policy
diagnose sys session filter clear proto
Clear protocol filter.
diagnose sys session filter clear proto
diagnose sys session filter clear proto-state
Clear protocol state filter.
diagnose sys session filter clear proto-state
diagnose sys session filter clear sintf
Clear source interface filter.
diagnose sys session filter clear sintf
diagnose sys session filter clear sport
Clear source port filter.
diagnose sys session filter clear sport
diagnose sys session filter clear src
Clear source IP filter.
diagnose sys session filter clear src
diagnose sys session filter dintf
Destination interface.
diagnose sys session filter dintf <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
Interface name. |
string |
|
diagnose sys session filter dport
Destination port.
diagnose sys session filter dport <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
<0-65535> (from). |
string |
|
diagnose sys session filter dst
Destination IP address.
diagnose sys session filter dst <xxx.xxx.xxx.xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx.xxx.xxx.xxx> |
Destination IP (from). |
string |
|
diagnose sys session filter nsrc
NAT'd source ip address
diagnose sys session filter nsrc <xxx.xxx.xxx.xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx.xxx.xxx.xxx> |
NAT'd source ip (from) |
string |
|
diagnose sys session filter policy
Policy ID.
diagnose sys session filter policy <xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx> |
Policy ID (from). |
string |
|
diagnose sys session filter proto
Protocol number.
diagnose sys session filter proto <xx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xx> |
<0-255>. |
string |
|
diagnose sys session filter sintf
Source interface.
diagnose sys session filter sintf <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
Interface name. |
string |
|
diagnose sys session filter sport
Source port.
diagnose sys session filter sport <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
<0-65535> (from). |
string |
|
diagnose sys session filter src
Source IP address.
diagnose sys session filter src <xxx.xxx.xxx.xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx.xxx.xxx.xxx> |
Source IP (from). |
string |
|
diagnose sys session full-stat
Fully stat session.
diagnose sys session full-stat
diagnose sys session list
List session.
diagnose sys session list
diagnose sys session list-verbose
List sessions in verbose detail.
diagnose sys session list-verbose
diagnose sys session stat
Stat session.
diagnose sys session stat
diagnose sys session ttl
TTL session.
diagnose sys session ttl
diagnose sys session6
IPv6 session.
diagnose sys session6
diagnose sys session6 clear
Clear IPv6 sessions defined by filter.
diagnose sys session6 clear
diagnose sys session6 expectation
List IPv6 expectation session.
diagnose sys session6 expectation
diagnose sys session6 filter
List IPv6 session with filters.
diagnose sys session6 filter
diagnose sys session6 filter clear
Clear IPv6 session filter.
diagnose sys session6 filter clear
diagnose sys session6 filter clear dintf
Clear destination interface filter.
diagnose sys session6 filter clear dintf
diagnose sys session6 filter clear dport
Clear destination port filter.
diagnose sys session6 filter clear dport
diagnose sys session6 filter clear dst
Clear destination IP filter.
diagnose sys session6 filter clear dst
diagnose sys session6 filter clear nsrc
Clear NAT'd source IP filter.
diagnose sys session6 filter clear nsrc
diagnose sys session6 filter clear policy
Clear policy ID filter.
diagnose sys session6 filter clear policy
diagnose sys session6 filter clear proto
Clear protocol filter.
diagnose sys session6 filter clear proto
diagnose sys session6 filter clear proto-state
Clear protocol state filter.
diagnose sys session6 filter clear proto-state
diagnose sys session6 filter clear sintf
Clear source interface filter.
diagnose sys session6 filter clear sintf
diagnose sys session6 filter clear sport
Clear source port filter.
diagnose sys session6 filter clear sport
diagnose sys session6 filter clear src
Clear source IP filter.
diagnose sys session6 filter clear src
diagnose sys session6 filter clear vd
Clear virtual domain filter.
diagnose sys session6 filter clear vd
diagnose sys session6 filter dintf
Destination interface.
diagnose sys session6 filter dintf <xxxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxxx> |
Interface name. |
string |
|
diagnose sys session6 filter dport
Destination port.
diagnose sys session6 filter dport <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
<0-65535> (from). |
string |
|
diagnose sys session6 filter dst
Destination IP address.
diagnose sys session6 filter dst <xxx:xxx::xxx:xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx:xxx::xxx:xxx> |
Destination IP (from). |
string |
|
diagnose sys session6 filter nsrc
NAT'd source IP address.
diagnose sys session6 filter nsrc <xxx:xxx::xxx:xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx:xxx::xxx:xxx> |
NAT'd source IP (from). |
string |
|
diagnose sys session6 filter policy
Policy ID.
diagnose sys session6 filter policy <xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx> |
Policy ID (from). |
string |
|
diagnose sys session6 filter proto
Protocol number.
diagnose sys session6 filter proto <xx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xx> |
<0-255>. |
string |
|
diagnose sys session6 filter sintf
Source interface.
diagnose sys session6 filter sintf <xxxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxxx> |
Interface name. |
string |
|
diagnose sys session6 filter sport
Source port.
diagnose sys session6 filter sport <xxxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxxx> |
<0-65535> (from). |
string |
|
diagnose sys session6 filter src
Source IP address.
diagnose sys session6 filter src <xxx:xxx::xxx:xxx>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<xxx:xxx::xxx:xxx> |
Source IP (from). |
string |
|
diagnose sys session6 list
List IPv6 session.
diagnose sys session6 list
diagnose sys session6 list-verbose
List sessions in verbose detail.
diagnose sys session6 list-verbose
diagnose sys tcp-option
Enable/disable TCP option.
diagnose sys tcp-option
diagnose sys tcp-option disable
disable
diagnose sys tcp-option disable
diagnose sys tcp-option enable
enable
diagnose sys tcp-option enable
diagnose sys tcpsock
TCP sock info.
diagnose sys tcpsock
diagnose sys tcpsock6
TCP sock6 info.
diagnose sys tcpsock6
diagnose sys top
Show top processes information.
diagnose sys top <value> <Integer> <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
Delay in seconds (default 5). |
string |
|
|
<Integer> |
Maximum lines to display (default 20). Show all the running processes if larger than its total number. |
string |
|
|
<value> |
Iterations to run (default unlimited). |
string |
|
diagnose sys top-all
Show top threads information.
diagnose sys top-all <value> <Integer> <value>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<value> |
Delay in seconds (default 5). |
string |
|
|
<Integer> |
Maximum lines to display (default 20). Show all the running threads if larger than its total number. |
string |
|
|
<value> |
Iterations to run (default unlimited). |
string |
|
diagnose sys top-fd
Display processes with the most active file descriptors (default 5 processes).
diagnose sys top-fd [process-count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[process-count] |
Number of processes to include info for (default 5). |
string |
|
diagnose sys top-fd detail
Display per-process active fd info along with details (default 5 processes, 50 fds).
diagnose sys top-fd detail [process-count] [fd-count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[process-count] |
Number of processes to include info for (default 5). |
string |
|
|
[fd-count] |
Number of FDs to include (per process, default 50). |
string |
|
diagnose sys top-mem
Display processes with the most used memory (default 5 processes).
diagnose sys top-mem [process-count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[process-count] |
Number of processes to include info for (default 5). |
string |
|
diagnose sys top-mem detail
Display per-process memory info along with details (default 5 processes).
diagnose sys top-mem detail [process-count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[process-count] |
Number of processes to include info for (default 5). |
string |
|
diagnose sys top-sockmem
Display processes with the most used socket memory (default 5 processes).
diagnose sys top-sockmem [process-count]
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
[process-count] |
Number of processes to include info for (default 5). |
string |
|
diagnose sys traffic
Traffic information
diagnose sys traffic
diagnose sys traffic app-stats
Traffic application statistics.
diagnose sys traffic app-stats
diagnose sys traffic app-stats list
List traffic application statistics entry.
diagnose sys traffic app-stats list
diagnose sys udpsock
UDP sock info.
diagnose sys udpsock
diagnose sys udpsock6
UDP sock6 info.
diagnose sys udpsock6
diagnose sys uuid
UUID debug.
diagnose sys uuid
diagnose sys uuid allow-manual-set
Allow to set UUID manually.
diagnose sys uuid allow-manual-set
diagnose sys uuid allow-manual-set disable
Disable.
diagnose sys uuid allow-manual-set disable
diagnose sys uuid allow-manual-set enable
Enable.
diagnose sys uuid allow-manual-set enable
diagnose sys uuid generate
Generate a UUID.
diagnose sys uuid generate
diagnose sys var-zone
var-zone information.
diagnose sys var-zone
diagnose sys var-zone show
Show var-zone data.
diagnose sys var-zone show
diagnose sys vd
Virtual domain management.
diagnose sys vd
diagnose sys vd add
Add a Virtual System.
diagnose sys vd add <vdname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
diagnose sys vd delete
Delete a Virtual System.
diagnose sys vd delete <vdname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
diagnose sys vd list
List Virtual Domains.
diagnose sys vd list
diagnose sys vd set
Set current VDOM.
diagnose sys vd set <vdname>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<vdname> |
Virtual Domain Name. |
string |
|
diagnose sys vd stats
Show VDOM statistics.
diagnose sys vd stats
diagnose sys vlan
vlan
diagnose sys vlan
diagnose sys vlan list
List VLAN.
diagnose sys vlan list
diagnose sys vxlan
VXLAN diagnostics.
diagnose sys vxlan
diagnose sys vxlan fdb
VXLAN forwarding DB.
diagnose sys vxlan fdb
diagnose sys vxlan fdb list
Display VXLAN forwarding DB.
diagnose sys vxlan fdb list <string>
|
Parameter |
Description |
Type |
Size |
|---|---|---|---|
|
<string> |
Interface name. |
string |
|