Fortinet Version 3.0 manual Probe setting, Syslog

Page 56

probe setting

config CLI commands

probe setting

Use this command to configure how the FortiBridge unit responds when a probe determines that the FortiGate unit has failed. You can also configure the dynamic IP pattern used by probes and add the FortiGate serial number, which is used in FortiBridge alert messages.

Command syntax pattern

config probe setting set <keyword>

end

config probe setting unset <keyword>

end

get probe setting show probe setting

Keywords and variables

Description

Default

 

 

 

action_on_failure

Set how the FortiBridge unit responds when a probe detects that

failopen

{alertmail failopen snmp

the FortiGate unit has failed. You can enter one or more of the

 

syslog}

action types separated by spaces. Enter all of the action options

 

required. If you want to remove an option from the list or add an

 

 

option to the list, you must retype the list with the option removed

 

 

or added.

 

 

 

 

dynamic_ip_pattern

Configure the INT 2 and EXT 2 interfaces with dynamic probe IP

none

<address_ipv4>.*

addresses. The dynamic probe IP addresses should not conflict

 

with IP addresses on the network that the FortiGate unit is

 

 

connected to. These IP addresses are not visible from the

 

 

outside network, but they should not conflict with IP addresses in

 

 

packets passing through the FortiBridge unit. You cannot change

 

 

the dynamic IP pattern if any probes are enabled.

 

 

 

 

fgt_serial

The serial number of the FortiGate unit that the FortiBridge unit is

none

<serial_string>

connected to. This number is used in FortiBridge alert messages

 

 

to identify the FortiGate unit.

 

Example

Use the following command to configure the FortiBridge unit to send alert email and fail open when a probe detects a failure, set the IP pattern to 2.2.2.* and add the FGT8002803923050 FortiGate serial number

config probe setting

set action_on_failure alertmail failopen set dynamic_ip_pattern 2.2.2.*

set fgt_serial FGT8002803923050 end

Related Commands

probe probe_list {ping http ftp pop3 smtp imap}

56

FortiBridge Version 3.0 Administration Guide

09-30000-0163-20061109

Page 55 Page 57
Image 56
Page 55 Page 57
Contents M i n i s t r a t i o n G u i d e Trademarks Regulatory complianceContents Config CLI commands Configuration and operating proceduresUsing the CLI Execute CLI commands IndexPage About FortiBridge About this documentCustomer service and technical support Fortinet documentationFortinet tools and documentation CD Fortinet Knowledge CenterFortiBridge operating principles Example FortiBridge applicationConnecting the FortiBridge unit Connecting the FortiBridge-1000 copper gigabit ethernetHow the FortiBridge unit monitors the FortiGate unit Normal mode operationConnecting the FortiBridge-1000F fiber gigabit ethernet Normal mode operation Probes and FortiGate firewall policiesProbe interval and probe threshold Enabling probes to detect FortiGate hardware failureEnabling probes to detect FortiGate software failure Bypass mode operation FortiBridge power failureExample FortiGate HA cluster FortiBridge application Example configuration with other FortiGate interfaces Example configuration with other FortiGate interfaces Example configuration with other FortiGate interfaces FortiBridge-1000 Package contents FortiBridge unit basic informationFortiBridge-1000F Package contents Mounting instructionsTechnical specifications LED indicatorsConnectors Factory default configurationConnecting and turning on the FortiBridge unit Connecting and turning on the FortiBridge-1000 unitTo connect and turn on the FortiBridge-1000F unit Connecting and turning on the FortiBridge-1000F unitTo connect and turn on the FortiBridge-1000 unit Connecting to the command line interface CLI Connecting to the FortiBridge consoleFortiBridge-1000 login To connect to the FortiBridge console for the first timeCompleting the basic FortiBridge configuration Connecting to the FortiBridge CLI using TelnetTo connect to the CLI using Telnet Welcome FortiBridge-1000 #Adding an administrator password To add an administrator passwordChanging the management IP address To change the management IP addressChanging DNS server IP addresses Adding static routesTo change DNS server IP addresses To add static routesChanging the system time and date Allowing management access to the EXT 1 interfaceAdding administrator accounts To reset to factory defaults from the FortiBridge CLI Resetting to the factory default configurationInstalling FortiBridge unit firmware To upgrade to a new firmware version Execute restore image namestr tftpipExecute restore image FBG1000-v10-build010-FORTINET.out Upgrading to a new firmware versionReverting to a previous firmware version To revert to a previous firmware versionInstalling firmware from a system reboot To install firmware from a system rebootHit any key to stop autoboot Enter Tftp server addressEnter firmware image file image.out Get system statusConfiguration and operating procedures Example network settingsConfiguring FortiBridge probes Configuring FortiBridge probesProbe settings To configure probe settingsEnabling probes To enable and configure FortiBridge probesConfig probe probelist ping set status enable End Config probe probelist Imap set status enable End Verifying that probes are functioningTo verify that probes are functioning Go to System Status SessionConfiguring FortiBridge alerts Tuning the failure threshold and probe intervalTo configure alert email Config alertemail setting set server mail.myorg.com EndFortiBridge alert email FortiBridge syslogFortiBridge Snmp To configure FortiBridge syslogConfig log syslogd setting set server End Recovering from a FortiGate failure To add and enable an Snmp communityConfig system snmp community edit Set name snmp1 End To resume normal operation from bypass modeManually switching between FortiBridge operating modes Backing up and restoring the FortiBridge configurationExecute switch-mode To back up the FortiBridge configurationBacking up and restoring the FortiBridge configuration Backing up and restoring the FortiBridge configuration Connecting to the FortiBridge CLI using SSH or Telnet Setting administrative access for SSH or TelnetTo use the CLI to configure SSH or Telnet access CLI basicsOther access methods Connecting to the FortiBridge CLI using SSHSet allowaccess ping telnet ssh Get system interface namestrTo connect to the CLI using SSH Connecting to the FortiBridge CLI using SSH or Telnet Config CLI commands Examples Alertemail settingCommand syntax pattern Related Commands Log syslogd setting ExampleProbe probelist ping http ftp pop3 smtp imap Get probe probelistGet probe probelist http Show probe probelistProbe setting SyslogSystem accprofile Rw wShow system accprofile Get system accprofileGet system accprofile policyprofile System admin Password passwordstrShow system admin Get system adminGet system admin newadmin Config system console set End System consoleGet system console Show system consoleShow system dns System dnsGet system dns Get system status System failclose FailbypassSystem failclose System global MinutesintegerGet system global Show system globalShow system interface internal System interface internal externalGet system interface internal Config system manageip Set ip 192.168.2.80 255.255.255.0 end System manageipSystem route DistanceintegerConfig hosts System snmp communityGet system snmp community Show system snmp communityExecute CLI commands Backup Command syntaxExecute backup config filenamestr tftp-serveripv4 Execute backup config fbdg.cfgExecute date 09/17/2004 DateExecute date datestr datestr has the form mm/dd/yyyy, where Factoryreset Execute factoryresetPing Execute ping addressipv4 host-namestrReboot Execute rebootRestore Execute restore config backupconfigSwitch-mode Time Execute time timestrTime Index 09-30000-0163-20061109 Snmp SSH
Top Page Image Contents