CLI Love

Full Configuration

show full-configuration

q to quit out

Just link linux you can grep through the configuration

show full-configuration | grep interface

show full-configuration | grep ssl


BGP

get router info bgp summary

MNK_FW # get router info bgp summary

BGP router identifier 1.0.1.202, local AS number 64551

BGP table version is 1

0 BGP AS-PATH entries

0 BGP community entries

Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd

10.242.252.242 4 65101 0 0 0 0 0 never Active

10.242.252.252 4 64561 7 6 0 0 0 00:03:30 0

get router info bgp neighbors <neighbor IP> advertised-routes

get router info bgp neighbors <neighbor IP> received-routes

get router info bgp neighbors <neighbor IP> routes


ref;https://kb.fortinet.com/kb/documentLink.do?externalID=FD46630


config neighbor

edit 10.242.252.252

set soft-reconfiguration enable


-----

configure BGP route-maps and neighbors

https://docs.fortinet.com/document/fortigate/6.4.4/administration-guide/89370/applying-bgp-route-map-to-multiple-bgp-neighbors



System Status

get system status

get system ha status


Firewall Policy

show firewall policy

config firewall policy

edit 0 # edit 0 uses the next available rule number

get # show all setting you can set on a policy, more than you see in the GUI



Routing

get router info routing-table details

get router info routing-table details 1.1.1.1

get router info routing-table all


Diagnose

blah



Config

blah