Fortinet black logo

CLI reference

Home FortiNDR 7.0.3 CLI reference
7.0.3
7.4.3
7.4.2
7.4.1
7.4.0
7.2.3
7.2.2
7.2.1
7.2.0
7.1.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0

config system interface

config system interface

Use this command to configure allowed and denied administrative access protocols, up or down administrative status for the network interfaces of FortiNDR.

Syntax

config system interface
    edit <physical_interface_str>
        set allowaccess {ping https ssh telnet}
        set discover {enable | disable}
        set ip <ipv4mask>
        set mode {static | dhcp}
        set speed {auto | 10full | 10half | 100full | 100half | 1000full}
        set status {down | up}
    end

Variable

Description

Default

<physical_interface_str>

Name of the physical network interface, such as port1.

allowaccess {ping | https | ssh | telnet}

Add one or more protocols to the list of protocols that allow administrative access to FortiNDR through this network interface:

ping: Allow ICMP ping responses from this network interface.

https: Allow secure HTTP (HTTPS) access to the web-based manager and per-recipient quarantines.

ssh: Allow SSH access to the CLI.

telnet: Allow Telnet access to the CLI.

HTTP and Telnet connections are not secure and can be intercepted by a third party. To reduce risk, enable this option only on network interfaces connected directly to your management computer.

Varies by network interface.

discover {enable | disable}

Allow discovery of the interface on this port.

ip <ipv4mask>

IP address and netmask of the network interface.

mode {static | dhcp}

Interface mode.

static

speed {auto | 10full | 10half | 100full | 100half | 1000full}

Speed of the network interface. Some network interfaces might not support all speeds.

auto

status {down | up}

up enables the network interface to send and receive traffic.

down disables the network interface.

up

Previous
Next

config system interface

Use this command to configure allowed and denied administrative access protocols, up or down administrative status for the network interfaces of FortiNDR.

Syntax

config system interface
    edit <physical_interface_str>
        set allowaccess {ping https ssh telnet}
        set discover {enable | disable}
        set ip <ipv4mask>
        set mode {static | dhcp}
        set speed {auto | 10full | 10half | 100full | 100half | 1000full}
        set status {down | up}
    end

Variable

Description

Default

<physical_interface_str>

Name of the physical network interface, such as port1.

allowaccess {ping | https | ssh | telnet}

Add one or more protocols to the list of protocols that allow administrative access to FortiNDR through this network interface:

ping: Allow ICMP ping responses from this network interface.

https: Allow secure HTTP (HTTPS) access to the web-based manager and per-recipient quarantines.

ssh: Allow SSH access to the CLI.

telnet: Allow Telnet access to the CLI.

HTTP and Telnet connections are not secure and can be intercepted by a third party. To reduce risk, enable this option only on network interfaces connected directly to your management computer.

Varies by network interface.

discover {enable | disable}

Allow discovery of the interface on this port.

ip <ipv4mask>

IP address and netmask of the network interface.

mode {static | dhcp}

Interface mode.

static

speed {auto | 10full | 10half | 100full | 100half | 1000full}

Speed of the network interface. Some network interfaces might not support all speeds.

auto

status {down | up}

up enables the network interface to send and receive traffic.

down disables the network interface.

up

Previous
Next