Command line access mode
After logging in to Kaspersky NGFW using the console and starting the command line, only one of the following modes is available, depending on the current state of the device:
The mode in which the command line is started depends on the current status of the device:
If the Kaspersky NGFW device has the Initialization status, the command line is not accessible. Instead, the user gets a Service is not ready message.
Switching between access modes is not automatic. If the status of the device changes while the device is working (for example, the device goes from Initialization to OK), to gain access to a new set of commands, you need to exit the current session and re-authorize.
Commands and utilities
You can manage Kaspersky NGFW on the command line. For a description of command families for configuring Kaspersky NGFW, see the Managing Kaspersky NGFW using the command line document.
You can also use the following command line utilities and their options to diagnose and troubleshoot Kaspersky NGFW:
ping is a utility for checking the connection quality in TCP/IP networks.You can use the ping utility to set the maximum transmission unit (MTU) size and control the DF flag.
curl is a utility for making HTTP requests.nslookup is a utility for troubleshooting DNS.traceroute is a utility for determining data routes in TCP/IP networks.tcpdump is a packet capture utility.packet-tracer is a utility for logging packets transiting data plane interfaces.These diagnostic utilities are available on all interfaces of Kaspersky NGFW. For detailed information on how to use these utilities, refer to the corresponding documentation.
Page top