Firemon CLI

Firemon Firmware 8.15.x 이상에서 Interface 정보 변경 방법

fmos config --e 또는 https://firemon_ip:55555

 

AS / DC 연동

AS : fmos shareconf export

AS : scp 파일명 firemon@IP:/home/firemon

DC : fmos shareconf import 파일명

 

또는

AS : fmsh_registerdc 1.1.1.1(DC IP) 실행하면 DataCollector_1_1_1_1.xml 파일 생김

DC : fmsh_importdcxml DataCollector_1_1_1_1.xml

 

Firemon 데이터 삭제

fmsh_purgedata

 

sudo rm-rf /etc/localtime

sudo ln -s /usr/share/zoneinfo/Asia???Seoul /etc/localtime

sudo date -s "20170210 15:21:00"

sudo vi /etc/hosts FQDN 등록

 

 

fmos status

fmos restart all

 

sudo tail -F /var/log/firemon/dc/Datacommector.log

 

tcpdump -ni eno16777728 host 192.168.200.254 and port 514 -nnxs 0 -vv | grep Msg | grep info

 

fmos install wireshark

fmos install wireshark --source FMOS-8.9.1.iso

sudo gpasswd -a firemon wireshark

fmos restart all

 

tshark -D

ip link show

tshark -i 3 host 192.168.0.21

tshark -i 3 host 192.168.0.22

tshark -i 3 host 192.168.0.23

 

fmos redeploy all

 

 

1. Firemon 정보 학인 : fmsh_fmversion

 

2. ifconfig 정보 설정 및 확인 : fmsh_ifconfig

fmsh_ifconfig help

fmsh_ifconfig <int> <address> <netmask>

fmsh_ifconfig <int> dhcp

fmsh_ifconfig <int> disabled

 

fmsh_ifconfig <int> status

fmsh_ifconfig all status

 

3. G/W 설정 : fmsh_gateway <gateway>

 

4. hostname설정 : fmsh_hostname <hostname>

 

5. Firemon 방화벽 확인 / 정지 / 시작

fmsh_fwstatus

fmsh_fwstop

fmsh_fwstart

 

6. Firemon 데몬 확인 / 정지 / 시작 / 재시작

fmsh_fmstatus

fmsh_fmstop

fmsh_fmstart

fmsh_fmrestart

 

7. DC Debug 모드 동작

fmsh_dclogprofile <profile> Profiles: info / dugall

 

8. Firemon 장비 off / reboot

fmsh_reboot

fmsh_shutdown

 

9. FMOS 업데이트

fmsh_update file <filename>

 

10. Firemon Data 복구

fmsh_restorebackup <filename> [--no-verify]

 

11. Firemon Data 백업

명령어 : /opt/firemon/JAS/fm-server.sh -backup -filename <backupfilename>

백업경로 : /opt/firemon/backup

 

12. CVE업데이트

fmsh_cveupdate

 

15. 기타 주요 명령어

 

경로 : /opt/firemon/JAS/fm-server.sh

[root@device-pack JAS]$ ./fm-server.sh

usage: java com.sp.core.server.Server

[-showdcs] ## 등록된 DC 목록 확인

[-showlicense]

[-adddc ipaddress]

[-deldc ipaddress] ## 등록된 DC 삭제

[-showdn]

[-backup -filename backupfilename ] ## 데이터 백업 (위치 : /opt/firemon/backup)

[-restorebackup -filename backupfilename -outputdir destinationDirectory]

[-consolidate]

[-installCert -alias certAlias -filename certFilename]

[-deleteCert -alias certAlias]

[-listCerts]

[-uc]

[-upt]

 

 

 

fmos install wireshark

sudo gpasswd -a wireshark firemon

sudo gpasswd -a firemon wireshark

fmos install traceroute

fmos install bind-utils

fmos install net-tools

 

sudo tshark -nni eth0 host 192.168.234.2

sudo tshark -nni 3 host 192.168.234.2

 

curl -v telnet://192.168.234.253:22

 

curl -v telnet://192.168.234.253:443