Chain multiple comands in a qapp/parser in one cli session

Question

Hello all,

I would like to write an parser/qapp for a fortinet to capture some packets.

Here a chain of commands is used to archieve a packet sniff.

diagnose debug flow filter port 443 ##Define Filter
diagnose debug flow show function-name enable
diagnose debug flow show iprope enable
diagnose debug flow trace start 20
diagnose debug enable

diagnose debug disable
diagnose debug flow filter clear ## Output start, need to be captured

##cleanup

diagnose debug disable
diagnose debug flow filter clear

The flow must be in the same CLI session (I already tried to use a standalone parser for each step)

On the fortinet box itself it is not possible to chain commands.

Is that possible?

Kranthi · Accepted Answer

Hieschulz,First Navigate to System settings – Advance settingsIn the “Rules for CLI Command Data Retrieval” section, please add the word “diagnose” as shown below.Once added, please logout and login againCreate a Parser to enable the debug as shown below using “diagnose debug flow filter port 443||diagnose debug flow show function-name enable||diagnose debug flow show iprope enable||diagnose debug flow trace start 20||diagnose debug enable||diagnose debug disable||diagnose debug flow filter clear” as shown below.This will execute the commands one by one as shown in imageHowever, it is not recommended to use NetBrain for debug commands for any Vendor.Let me know if you have any further questions. Will be happy to assist :)

eschulz · Answer

Thanks it works 👍, but the ssh timeout is now to short.Will there any side effects if I increase the valueon the front server?

Reply

Sign up

Sign in with SSO

Login to the community

Sign in with SSO

Scanning file for viruses.

This file cannot be downloaded