firewall

service firewall <id> monitor logging <id>
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Monitor logging information for available outputs

Values:
  • id – Monitor logging information for available outputs

  • id – Monitor logging information for available outputs

service firewall <id> monitor stats
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Monitor firewall statistics for the specified client

service firewall <id> reload-rules
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Reload the ruleset for the given client

service firewall <id> replay <file>
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Replay a PCAP file on an existing firewall configuration

Values:
  • file

    PCAP file located at the running:// directory

    It is usually very useful to replay an existing PCAP file in order to test a set of rules or the behavior of the firewall under certain circumstances. Place here a PCAP file (or a directory containing PCAP files) and all of them will be “replayed”. When finished, the generated log files will be compressed and placed under the ‘running://firewall/tests’ path.

  • file

    PCAP file located at the running:// directory

    It is usually very useful to replay an existing PCAP file in order to test a set of rules or the behavior of the firewall under certain circumstances. Place here a PCAP file (or a directory containing PCAP files) and all of them will be “replayed”. When finished, the generated log files will be compressed and placed under the ‘running://firewall/tests’ path.

Options:

verbose

Verbose output information during firewall communication

force

Directly stop the required services and run the replay without asking

quiet

Do not output any logging information, just run and be silent

level <id>

Logging level used when outputting information into syslog. Defaults to WARNING

Values:
  • id – Logging level used when outputting information into syslog. Defaults to WARNING

service firewall <id> restart
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Restart the entire firewall client

service firewall <id> show early-drop-stats <id>
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Show global statistics about early-drop feature

Values:
  • id – Show statistics for the specified interface

  • id – Show statistics for the specified interface

service firewall <id> show logging <id>
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Show logging information for available outputs

Values:
  • id – Show logging information for available outputs

  • id – Show logging information for available outputs

service firewall <id> show queues
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Show firewall queue statistics for the specified client

service firewall <id> show reload-stats
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Show firewall reload statistics for the specified client

service firewall <id> show stats
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Show firewall statistics for the specified client

service firewall <id> status
AresC640 Atlas840 H5-Rail M10-Smart M2 M20 RS420 RXL15000 SDE

Get firewall service status

Options:

extended

Get firewall service status in raw format (directly taken from SystemD)