Installation guide
142
Appendix A Command Line Tools
sg-clear-all
Firewall,
Layer 2
Firewall,
IPS
Note! Use this only if you want to clear all configuration
information from the engine.
This command resets all configuration information from the
engine. It does not remove the engine software. After using this
command, you must reconfigure the engine using the sg-
reconfigure command.
sg-cluster
[-v <virtual engine ID>]
[status [-c SECONDS]]
[versions]
[online]
[lock-online]
[offline]
[lock-offline]
[standby]
[safe-offline]
[force-offline]
Firewall,
Layer 2
Firewall,
IPS
Used to display or change the status of the node.
-v <virtual engine ID> (Master Engine only) option
specifies the ID of the Virtual Security Engine on which to
execute the command.
status [-c SECONDS] command displays cluster status. When
-c SECONDS is used, status is shown continuously with the
specified number of seconds between updates.
version command displays the engine software versions of the
nodes in the cluster.
online command sends the node online.
lock-online command sends the node online and keeps it
online even if another process tries to change its state.
offline command sends the node offline.
lock-offline command sends the node offline and keeps it
offline even if another process tries to change its state.
standby command sets an active node to standby.
safe-offline command sets the node to offline only if there
is another online node.
force-offline command sets the node online regardless of
state or any limitations. Also sets all other nodes offline.
sg-contact-mgmt
Firewall,
Layer 2
Firewall,
IPS
Used for establishing a trust relationship with the Management
Server as part of engine installation or reconfiguration (see sg-
reconfigure below). The engine contacts the Management
Server using the one-time password created when the engine’s
initial configuration is saved.
Table A.2 NGFW Engine Command Line Tools (Continued)
Command
Engine
Role
Description