Scribd
Upload
168 views

CLI Access Modes:: Operational Mode

Operational mode is used to view firewall and traffic information while configuration mode modifies the firewall configuration. Commands like exit switch between the modes, with > and # indicating the mode. The CLI provides help via ?, allows tab completion, and commits configuration changes.

Uploaded by

Ayan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
168 views

CLI Access Modes:: Operational Mode

Operational mode is used to view firewall and traffic information while configuration mode modifies the firewall configuration. Commands like exit switch between the modes, with > and # indicating the mode. The CLI provides help via ?, allows tab completion, and commits configuration changes.

Uploaded by

Ayan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

CLI Access Modes:

Operational Mode:
o Use operational mode to view information about firewall & the traffic running through.
o Use to perform operations such as restarting, loading configuration, or shutting down.
o When log in to Firewall , the Command Line Interface (CLI) opens in operational mode.
o Palo Alto Firewall Operational Mode, command prompt sign is a greater then sing ( >).
Configuration Mode:
o Use configuration mode to view and modify the Palo Alto Firewall configuration.
o You can switch between operational mode and configuration mode at any time.
o Command prompt changes from a > to a #, indicating that successfully changed modes.
o Switch from configuration mode to operational mode, use either quit or exit command.
o To enter operational mode command while in configuration mode, use the run command.

Operational—Use operational mode to view information about the Firewall.


Configuration—Use configuration mode to view and modify the configuration.

Symbol or Key Description


* Indicates that the option is required.
> Indicates that there are additional nested commands.
+ Indicates that the option has an associated value that you must enter.
| Allows you to filter command output.
Tab Key Automatically complete the command.
Exit Switch from configuration mode to operational mode.
Quit Switch from configuration mode to operational mode.
Run To run operational mode command while in configuration mode.
? Show list of the available commands appears.
Commit Save candidate config to the running config

1 | P a g e Created by Ahmad Ali E-Mail: ahmadalimsc@gmail.com , Mobile: 056 430 3717


CLI Management Commands:
Commands Description
> show interface management Show management Interface details
> show system info Display system’s management IP, Serial
number, and code version
> show system disk-space Show percent usage of disk partitions.
> show system software status Show running processes.
> show system resources Show processes running in management plane.
> show running resource-monitor Show resource utilization in the data plane.
> request license info Show the licenses installed on the device.
> show jobs processed Show when commits are completed.
> show session info Display session usage, rate etc information.
> show session id <session-id> Display information about a specific session.
> show running security-policy Show the running security policy.
> request restart system Restart the device.
> request shutdown system Shutdown the device.
>request system private-data-reset Default Factory reset command
> show admins Show administrators who are currently logged.
> show admins all Show administrators who can access the web
interface or command line interface CLI.
> ping host <destination-ip-address> Ping from management interface
> ping source <ip-address-on-dataplane> Ping from a dataplane interface to a
host <destination-ip-address> destination IP address
> show running nat-policy Shows current NAT policy table.
> show running ippool Shows NAT pool utilization.
> show running global-ippool Shows NAT pool utilization.
> show routing route Shows routing table.
> show running security-policy Shows current policy set.
> show vpn flow Shows encap/decap counters
> show vpn gateway Shows list of IKE gateway configurations.
> show vpn ike-sa Shows IKE Phase 1 SA
> show vpn ipsec-sa Shows IPSEC Phase 2 SA.
> show vpn tunnel List of auto-key IPSec tunnel configurations.
> show high-availability state Shows the HA state of the device.
> show high-availability all Shows settings configured on device & peer.
> show high-availability state- Shows if the devices are synchronized
synchronization
> request high-availability state suspend Suspends active device and makes passive
device active
> request high-availability state functional Changes the state from suspend to passive.
> request license info Shows the license installed on the device.

2 | P a g e Created by Ahmad Ali E-Mail: ahmadalimsc@gmail.com , Mobile: 056 430 3717


Commands Description
# set zone Outside Create zone with name Outside.
# set network virtual-router VR-1 Create Virtual Router named VR-1
# set network interface ethernet ethernet1/1 Assign IP address and subnet mask to
layer3 ip 192.168.100.100/24 interface ethernet 1/1 and set as Layer 3
# set deviceconfig system type static Set the interface type to static
# set deviceconfig system type dhcp-client Set the interface type to DHCP
# set deviceconfig system dns-setting servers Set Primary and Secondary DNS
# set mgt-config users admin password Set Administrator password
# set deviceconfig system ip-address Assign IP address to Management interface.
> find command Display entire command in current mode.
> find command keyword show Locate all commands have specified keyword.

GUI Error Prompts.


o The GUI provides guidance when configure the Palo Alto Network firewall.
o Red underline indicates tabs, which must be completed for a given interface.
o The Yellow highlights specify that fields is required and must to enter or type.
o The OK button will be unavailable if the interface is missing required information.

3 | P a g e Created by Ahmad Ali E-Mail: ahmadalimsc@gmail.com , Mobile: 056 430 3717

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy