Additional Devices
You must first onboard the device in the Administration module.
To export additional device configurations, compete the following steps.
- Log in to the device as an administrator using SSH.
- Set the SSH client to log the console to file.
- If not already, disable console paging by running the command specific to the device.
- Run the following commands and save the output into the files as listed below for the specific device.
- Open each file and remove any additional characters there were caught by the log file.
- Save all associated files in a folder named for the device.
Arista Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| show interface | interface.txt | All interfaces |
| show ip route | ip-route.txt | IP routing table information |
| show ip route vrf all | vrf,txt | The set of defined VRFs and associated interfaces |
| show version | version.txt | System version information |
| show access-lists | access-list | Access Control List (ACL) configuration for IPv4 addresses and objects |
| show ipv6 access-lists | access-list-ipv6 | ACL configuration for IPv6 addresses and objects |
| show running-config | running-config | Current running configuration information |
| show startup-config | startup-config | Current startup configuration information |
| sh run | username | users | Managers/admins information |
Hillstone Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| show address | address.txt | Items name and member-group/subnet from the address book |
| show configuration | config.txt | The configuration |
| show interface | interface.txt | All interfaces |
| show ipv6 interface | interface-v6.txt | IPv6 interface status and configuration |
| show ip route | ip-route.txt | IP routing table information |
| show ipv6 route | ip-route-v6.txt | IPv6 routing table |
| show logging alarm | logging-alarm.txt | Event logs whose severity is critical or greater |
| show logging event | logging-event.txt | Device event log |
| show logging security | logging-security.txt | The security log |
| show policy | policy.txt | Policy rules |
| show servgroup predefined | servgroup-predefined.txt | Services in each of the system predefined service groups |
| show servgroup userdefined | servgroup-userdefined.txt | Services in each of the user-defined service groups |
| show service predefined | service-predefined.txt | Predefined services and associated ports |
| show service userdefined | service-userdefined.txt | User-created services and ports |
| show version | version.txt | System version information |
| show zone | zone.txt | Zone information |
Huawei Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| display version | version.txt | System and software version |
| display clock | clock.txt | Current date and clock setting |
| display interface | interface.txt | Interface IP, status, statistics |
| display zone | zone.txt | Information about security zones |
| display current-configuration | config.txt | Currently running configuration |
| display ip routing-table | ip-route.txt | Routing table information |
| display security-policy rule all | policy.txt | All security policy rules |
| display predefined-service | service-predefined.txt | All security policy rules |
| display user-manage user verbose | users.txt | A wide range of user info |
| display user-manage group verbose | groups.txt | Detailed user group info |
| display user-manage security-group verbose | security-groups.txt | Detailed info on configured security groups |
| display ipv6 interface | ipv6-interface.txt | IPv6 interface addresses |
| display ipv6 routing-table | ipv6-route.txt | Active routes in the IPv6 routing table |
| display policy6 all | ipv6-policy.txt | Zone configurations for all IPv6 policies |
| Run Command | Save Output As | Information Included |
|---|---|---|
| display version | version.txt | System and software version |
| display clock | clock.txt | Current date and clock setting |
| display interface | interface.txt | Interface IP, status, statistics |
| display zone | zone.txt | Information about security zones |
| display current-configuration | config.txt | Currently running configuration |
| display ip routing-table | ip-route.txt | Routing table information |
| display security-policy rule all | policy.txt | All security policy rules |
| display predefined-service | service-predefined.txt | All security policy rules |
| display user-manage user verbose | users.txt | A wide range of user info |
| display user-manage group verbose | groups.txt | Detailed user group info |
| display user-manage security-group verbose | security-groups.txt | Detailed info on configured security groups |
FortiGate Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| full_config | config.txt | Current settings regardless of whether the values are default or not |
| show system interface | interface.txt | System interface info (name, IP, interface configuration info) |
| get router info routing-table all | route.txt | All routing table information |
| get system zone | zone.txt | Zones defined on the firewall |
| get router info6 routing-table | route6.txt | IPv6 routing table entries |
| get firewall service predefined (if vdom, you must go to “config global” first) | service.txt | Predefined services |
| get firewall service custom (for version 5.0 and greater) | service.txt | Predefined services |
| Run Command | Save Output As | Information Included |
|---|---|---|
| show full-configuration | global.txt | Outputs all the current settings on a multi-VDOM system regardless of whether the values are default or not |
| show system interface | interface.txt | System interface info (name, vdom, IP, interface configuration info) |
| get system status | version.txt | Displays the firmware version currently running on FortiGate VDOM firewall |
| full_config | config.txt | Outputs all the VDOM level current settings regardless of whether the values are default or not |
| get router info routing-table all | route.txt | All routing table information |
| show router static | route_static.txt | Displays static routes |
| show router bgp | route_bgp,txt | Displays BGP dynamic routes |
| show router ospf | route_ospf.txt | Displays OSPF dynamic routes |
| show router rip | route_rip.txt | Displays all RIP routes |
| get system zone | zone.txt | Retrieves the zones defined on the firewall |
F5 Networks Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| cat /config/bigip.conf | bigip.conf | Local Traffic Manager (LTM) configuration file |
| cat /config/bigip_base.conf | bigip_base.conf | Base configuration file; Partition and Startup info |
|
cat /config/bigip_sys.conf cat /config/bigpipe/bigip_sys.conf |
bigip_sys.conf | System configuration file |
| cat /config/bigip_user.conf | bigip_user.conf | Configured admin users info |
| cat /config/profile_base.conf | 'bigip_profile_base.conf | F5 storage location for all default Profiles |
| tmsh show /net route | routes.txt | Routing table |
| cat /etc/services | services.conf | F5 reference file for services |
Forcepoint Enterprise & Sidewinder Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| cf adminuser query | adminuser.txt | Administrator user database |
| cf appfilter query | appfilter.txt | All Application Defenses [used to enforce Request for Comments (RFC) standards] |
| cf auth query | auth.txt | Authenticators configuration |
| cf burb query | burb.txt | Burb configuration |
| cf burbgroup query | burbgroup.txt | Burb group configuration |
| cf catgroups query | catgroups.txt | IPS signature groups |
| cf dns query | dns.txt | Current DNS server configuration |
| cf domain query | domain.txt | Domain network objects |
| cf host query | host.txt | Host network objects |
| cf hostname query | hostname.txt | Relates the firewall host name |
| cf interface query | interface.txt | Network interfaces |
| cf ipaddr query | ipaddr.txt | IP address of network objects |
| cf iprange query | iprange.txt | IP address range of network objects |
| cf ipsec query | ipsec.txt | Virtual Private Network (VPN) definitions |
| cf ipsresponse query | ipsresponse.txt | Firewall response if signature-based IPS inspection detects an intrusion |
| cf netgroup query | netgroup.txt | Network object groups (netgroups) |
| cf netmap query | netmap.txt | Maps of multiple IP addresses and subnets to alternate addresses |
| netstat -rn | netstat.txt | Routing tables, including static routes and learned routes |
| cf policy query | policy.txt | Rules and rule groups, and exports rule elements |
| cf -J service query | service.txt | All services |
| cf -J servicegroup query | servicegroup.txt | All service groups |
| cf subnet query | subnet.txt | Subnets of network objects |
| cf timeperiod query | timeperiod.txt | Time-period object |
| cf udb query | udb.txt | Authentication user database |
| cf usergroup query | usergroup.txt | User groups stored in the user database |
A burb is a type enforced network area used to isolate network interfaces from each other. (Think Zones!)
SonicWALL Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| show current-config | config.txt | Current config |
| Run Command | Save Output As | Information Included |
|---|---|---|
| show access-rules | address-objects.txt | All access rules |
| show address-group | address-groups.txt | All IPs of groups |
| show address-object | address-objects.txt | All IPs of objects |
| show interface all | interfaces.txt | All network interfaces |
| show nat | nat-rules.txt | All NAT rules |
| show route | routes.txt | All routes |
| show service | services.txt | All services |
| show service-group | service-groups.txt | All service groups |
| show tech-support | tech-support.txt | |
| show zone all | zones.txt | Zones defined on the firewall |
TopSec Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| define service show default | default-services.txt | Default service objects |
| show-running nostop | running-config.txt | Running system config |
| show nostop | startup-config.txt | Startup configuration on the device |
| system admininfo showdb | users.txt | Managers/admins information |
WatchGuard Export Commands
| Run Command | Save Output As | Information Included |
|---|---|---|
| show alias | aliases.txt | Alias configuration |
| export config to console | config.txt | Device configuration |
| show device-mgmt-user | device.txt | Current list of Device Management user accounts |
| show dynamic-nat | dnats.txt | Device’s Dynamic NAT |
| show interface | interface.txt | Physical interface configuration and status |
| show ip route | ip.txt | IPv4 route table, this command shows the first 100 routes |
| show one-to-one-nat | one2onenats.txt | 1-to-1 NAT settings for the Firebox. |
| show auth-user-group | users.txt | Information about authorized users and user groups |
The command alias creates shortcuts to identify a group of hosts, networks, or interfaces or any combination thereof. An alias is a custom user-defined group with no set configuration or meaning.