Fortinet black logo

FortiGate-7000 Handbook

Home FortiGate-7000 6.0.4 FortiGate-7000 Handbook
6.0.4
6.2.3
6.0.10
6.0.9
6.0.8
6.0.6
6.0.4
5.6.14
5.6.12
5.6.11
5.6.7
5.4.9

FortiGate-7000 execute CLI commands

FortiGate-7000 execute CLI commands

This chapter describes the FortiGate-7000 execute commands. Many of these commands are only available from the FIM CLI.

execute load-balance console-mgmt {disable | enable}

Enable or disable the console disconnect command on the management module CLI. If the console disconnect command is enabled, you can log into one of the management module consoles and use the console disconnect command to disconnect the other management module console.

The FortiGate-7000 management module has two consoles that you can use to connect to the management module CLI or to the CLIs of any of the FIMs or FPMs in the FortiGate-7000 system. However, the system only supports one console connection to a module at a time. So if the other management module console is connected to an FIM or FPM that you want to connect to, you have to disconnect the other management module console to be able to connect to the FIM or FPM.

To disconnect the other management module console, you can log into the management module CLI and use the console disconnect command to disconnect the other console.

You can use this command to enable or disable this functionality.

execute load-balance console-mgmt disconnect <console>

Disconnect one of the management module consoles from the FIM or FPM that it is connected to. <console> is the number of the console to disconnect.

This command allows you to disconnect a management module console session from the FIM CLI without having to log into the management module CLI.

execute load-balance console-mgmt info

This command shows whether the management module console disconnect command is enabled or disabled and also shows which modules the management module consoles are connected to or if they are disconnected.

execute load-balance license-mgmt list

List the licenses that have been added to this FortiGate-7000, including a license for extra VDOMs and FortiClient licenses.

execute load-balance license-mgmt reset {all | crypto-key | forticlient | vdom}

Reset licenses and crypto keys added to this FortiGate-7000. Enter all to reset all licenses and crypto keys. Resetting all, crypto-key, or vdom reboots the FortiGate-7000, which starts up with the specified licenses set to default values and, if applicable, re-generates crypto keys while restarting. Resetting forticlient requires you to manually restart the FortiGate-7000 before the change takes affect.

execute load-balance slot manage [<chassis>.]<slot>

Log into the CLI of an individual FIM or FPM. Use <slot> to specify the FIM or FPM slot number. Use <chassis> to specify the chassis number in an HA configuration.

You will be asked to authenticate to connect to the FIM or FPM. Use the exit command to end the session and return to the CLI from which you ran the execute command.

execute load-balance slot power-off <slot-map>

Power off selected FPMs. This command shuts down the FPM immediately. You can use the diagnose sys confsync status command to verify that the management board cannot communicate with the FPMs.

You can use the execute load-balance slot power-on command to start up powered off FPMs.

execute load-balance slot power-on <slot-map>

Power on and start up selected FPMs. It may take a few minutes for the FPMs to start up. You can use the diagnose sys confsync status command to verify that the FPMs have started up.

execute load-balance slot reboot <slot-map>

Restart selected FPMs. It may take a few minutes for the FPMs to shut down and restart. You can use the diagnose sys confsync status command to verify that the FPMs have started up.

Previous
Next

FortiGate-7000 execute CLI commands

This chapter describes the FortiGate-7000 execute commands. Many of these commands are only available from the FIM CLI.

execute load-balance console-mgmt {disable | enable}

Enable or disable the console disconnect command on the management module CLI. If the console disconnect command is enabled, you can log into one of the management module consoles and use the console disconnect command to disconnect the other management module console.

The FortiGate-7000 management module has two consoles that you can use to connect to the management module CLI or to the CLIs of any of the FIMs or FPMs in the FortiGate-7000 system. However, the system only supports one console connection to a module at a time. So if the other management module console is connected to an FIM or FPM that you want to connect to, you have to disconnect the other management module console to be able to connect to the FIM or FPM.

To disconnect the other management module console, you can log into the management module CLI and use the console disconnect command to disconnect the other console.

You can use this command to enable or disable this functionality.

execute load-balance console-mgmt disconnect <console>

Disconnect one of the management module consoles from the FIM or FPM that it is connected to. <console> is the number of the console to disconnect.

This command allows you to disconnect a management module console session from the FIM CLI without having to log into the management module CLI.

execute load-balance console-mgmt info

This command shows whether the management module console disconnect command is enabled or disabled and also shows which modules the management module consoles are connected to or if they are disconnected.

execute load-balance license-mgmt list

List the licenses that have been added to this FortiGate-7000, including a license for extra VDOMs and FortiClient licenses.

execute load-balance license-mgmt reset {all | crypto-key | forticlient | vdom}

Reset licenses and crypto keys added to this FortiGate-7000. Enter all to reset all licenses and crypto keys. Resetting all, crypto-key, or vdom reboots the FortiGate-7000, which starts up with the specified licenses set to default values and, if applicable, re-generates crypto keys while restarting. Resetting forticlient requires you to manually restart the FortiGate-7000 before the change takes affect.

execute load-balance slot manage [<chassis>.]<slot>

Log into the CLI of an individual FIM or FPM. Use <slot> to specify the FIM or FPM slot number. Use <chassis> to specify the chassis number in an HA configuration.

You will be asked to authenticate to connect to the FIM or FPM. Use the exit command to end the session and return to the CLI from which you ran the execute command.

execute load-balance slot power-off <slot-map>

Power off selected FPMs. This command shuts down the FPM immediately. You can use the diagnose sys confsync status command to verify that the management board cannot communicate with the FPMs.

You can use the execute load-balance slot power-on command to start up powered off FPMs.

execute load-balance slot power-on <slot-map>

Power on and start up selected FPMs. It may take a few minutes for the FPMs to start up. You can use the diagnose sys confsync status command to verify that the FPMs have started up.

execute load-balance slot reboot <slot-map>

Restart selected FPMs. It may take a few minutes for the FPMs to shut down and restart. You can use the diagnose sys confsync status command to verify that the FPMs have started up.

Previous
Next