02-18-2013 11:27 PM
There is a test-command one can use in the CLI to identify which security policy a specific packet will hit.
But is there also a command to issue a log-event?
For example when you are about to manually configure triggers in your logserver to react on - otherwise im forced to send real traffic through the box and it will take some more time to accomplish compared to if there already exists a "test-log" (or similar) command in the CLI.
02-19-2013 01:10 PM
Hi,
As per my knowledge currently following are set of test commands that can be used
admin@LAB-123-PA-500> test
> arp ARP related
> botnet Test botnet domain categorization
> cp-policy-match Test cp policy match
> custom-url Test custom URL categorization
> data-filtering Test ccn/ssn match
> decryption-policy-match Test ssl policy match
> dns-proxy Test DNS query
> dos-policy-match Test DoS Policy match
> global-protect-satellite Test GlobalProtect satellite
> nat-policy-match Test nat policy match
> nd IPv6 Neighbor Discovery
> pbf-policy-match Test Policy Based forwarding match
> pppoe test pppoe connection
> qos-policy-match Test qos policy match
> routing verify routing settings
> scp-server-connection Test scp server connection
> security-policy-match Test security policy match
> stats-service Test statistics service
> url Test URL categorization
> url-info-cloud Return detailed information about the URL in the cloud
> url-info-host Return detailed information about the URL in the MP
> vpn verify (IKE/IPSec) VPN settings
> wildfire Test wildfire
If you think that it is valuable to your environment. You can request your local SE to file a feature request on your behalf.
Hopefully this helps.
Thank you
Numan
02-19-2013 01:10 PM
Hi,
As per my knowledge currently following are set of test commands that can be used
admin@LAB-123-PA-500> test
> arp ARP related
> botnet Test botnet domain categorization
> cp-policy-match Test cp policy match
> custom-url Test custom URL categorization
> data-filtering Test ccn/ssn match
> decryption-policy-match Test ssl policy match
> dns-proxy Test DNS query
> dos-policy-match Test DoS Policy match
> global-protect-satellite Test GlobalProtect satellite
> nat-policy-match Test nat policy match
> nd IPv6 Neighbor Discovery
> pbf-policy-match Test Policy Based forwarding match
> pppoe test pppoe connection
> qos-policy-match Test qos policy match
> routing verify routing settings
> scp-server-connection Test scp server connection
> security-policy-match Test security policy match
> stats-service Test statistics service
> url Test URL categorization
> url-info-cloud Return detailed information about the URL in the cloud
> url-info-host Return detailed information about the URL in the MP
> vpn verify (IKE/IPSec) VPN settings
> wildfire Test wildfire
If you think that it is valuable to your environment. You can request your local SE to file a feature request on your behalf.
Hopefully this helps.
Thank you
Numan
02-20-2013 10:01 PM
Thanks, I have filed this as a RFE (Request for Enhancement).
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
