CLI commands

FortiLog CLI reference

 

 

 

 

 

 

 

Commands

Description

 

 

 

 

set system admin username

Enter system administrator user name, password, and access permission.

 

<name_str> password

• <name_str> is the administrator user name.

 

<password_str> permission {readonly

• <password_str> is the password.

 

readwrite}

 

 

 

 

 

set system admin username

Enter the administrator trusted host IP address and netmask. The trusted host IP

 

<name_str> trusthost <trusthost_str>

address is the location from which the administrator can log into the web-based

 

or <0.0.0.0> <netmask_str> or

manager. If trusted host is 0.0.0.0 the administrator can log in from any IP address.

 

The trusted host netmask is the location from which the administrator can log into

 

<0.0.0.0>

 

the web-based manager. If netmask is 0.0.0.0 there is no restriction on the netmask.

 

 

• <trusthost_str> is trusted host IP address.

 

 

• <netmask_str> is the netmask.

 

 

 

 

set system admin username status

 

 

<enable disable>

 

 

 

 

 

set system dns primary

Enter the primary DNS server IP address. Enter none to delete the primary DNS

 

{xxx.xxx.xxx.xxx none}

server.

 

 

• <xxx.xxx.xxx.xxx> is the primary DNS server IP address.

 

set system dns secondary

Enter the secondary DNS server IP address. Enter none to delete the secondary

 

{xxx.xxx.xxx.xxx none}

DNS server.

 

 

• <xxx.xxx.xxx.xxx> is the secondary DNS server IP address.

 

 

 

 

set system hostname <hostname_str>

Enter the name for this FortiLog unit.

 

 

• <hostname_str> is the name of the FortiLog unit.

 

 

 

 

set system interface <nativist> config

Select the management access to the FortiLog unit interface (port1).

 

allowaccess {ping https ssh snap

• <nativist> is system interface name.

 

http telnet}

 

 

 

 

 

set system interface <nativist> config

Select the management access that you want to deny to the FortiLog unit interface

 

denatures {ping https ssh snap

(port1).

 

http telnet}

• <nativist> is system interface name.

 

 

 

 

set system interface <nativist> config

Enter the WINS server IP address.

 

wins <xxx.xxx.xxx.xxx>

• <xxx.xxx.xxx.xxx> is the WINS server IP address.

 

 

 

 

set system interface <nativist> config

Set the mac address for this interface. You can also set it back to the factory default

 

matador {xx:xx:xx:xx:xx:xx factory

value.

 

default}

• <xx:xx:xx:xx:xx:xx> is the interface mac address.

 

 

 

 

set system interface <intf_str> config

Enable or disable logging on traffic to the FortiLog unit from this interface.

 

log {enable disable}

 

 

 

 

 

set system interface <intf_str> config

Enter the maximum transportation unit for this interface. Enter “default” to cancel the

 

mtu <mtu_integer>

mtu.

 

 

• <mtu_integer> is the maximum transportation unit for this interface.

 

 

 

 

set system interface <intf_str> config

Enter the transportation speed of this interface.

 

speed <speed_str>

• <speed_str> is the speed type (auto, 10full, 10half, 100full, or 100half).

 

 

 

 

set system interface <intf_str> config

Set the interface down or up.

 

status {down up}

 

 

 

 

 

set system interface <intf_str> config

Enter the secondary IP address of the interface.

 

secip <xxx.xxx.xxx.xxx>

• <xxx.xxx.xxx.xxx> is the secondary IP address of the interface.

 

 

 

 

set system interface <intf_str> config

Select management access to the port1 interface with a secondary IP.

 

secallowaccess {ping https ssh

 

 

snmp http telnet}

 

 

 

 

 

set system interface <intf_str> config

Select the management access with a secondary IP that you want to deny to the

 

secdenyaccess {ping https ssh

port1 interface.

 

snmp http telnet}

 

 

 

 

108

05-16000-0082-20050115

Fortinet Inc.

Page 108
Image 108
Fortinet FortiLog-100, FortiLog-800 manual 108, 0.0, Trusthoststr is trusted host IP address, Netmaskstr is the netmask