Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
morris
Contributor

mgmt show access-rulebase name "xyz Security"

Hey Guys,

I Need some help with the API:

Requirement is to set all rules with more than 1M hits from log to accounting.

 

Unfortunately "mgmt show access-rulebase name "xyz Security"" is not listing any Information About the hit counter.

Is there any way to get the hit counter of a rule? Either it is not possible or I missed something in the API reference.

 

uid: "335b54af-69a2-457c-8228-991c6e446dd5"
type: "access-rule"
domain:
uid: "79b7b0fb-cc2f-be47-ae78-62e5e045cbb3"
name: "XYZ"
domain-type: "domain"
rule-number: 30
track:
type: "598ead32-aa42-4615-90ed-f51a5928d41d"
per-session: false
per-connection: true
accounting: false
enable-firewall-session: false
alert: "none"
source:
- "a413e153-b77b-11d7-6f29-449bbe696e21"
source-negate: false
destination:
- "047f117f-daea-407e-8c87-cca06f1eb4a0"
destination-negate: false
service:
- "97aeb3e0-9aea-11d5-bd16-0090272ccb30"
- "97aeb3b2-9aea-11d5-bd16-0090272ccb30"
- "97aeb3bd-9aea-11d5-bd16-0090272ccb30"
- "97aeb3d0-9aea-11d5-bd16-0090272ccb30"
- "7c6a350e-d770-4f72-ad8f-b47a5082a9db"
- "97aeb443-9aea-11d5-bd16-0090272ccb30"
- "089b3d4d-ba06-4a91-8146-73542e8a258e"
- "569a7113-b47a-7443-9cbf-4128abc8968c"
- "f21e8897-0e71-db4a-8330-dcd8995ca5ff"
service-negate: false
vpn:
- "97aeb369-9aea-11d5-bd16-0090272ccb30"
action: "6c488338-8eec-4103-ad21-cd461ac2c472"
action-settings:
enable-identity-captive-portal: false
content:
- "97aeb369-9aea-11d5-bd16-0090272ccb30"
content-negate: false
content-direction: "any"
time:
- "97aeb369-9aea-11d5-bd16-0090272ccb30"
custom-fields:
field-1: ""
field-2: ""
field-3: ""
meta-info:
lock: "unlocked"
validation-state: "ok"
last-modify-time:
posix: 1573648121952
iso-8601: "2019-11-13T13:28+0100"
last-modifier: "admin"
creation-time:
posix: 1573648121730
iso-8601: "2019-11-13T13:28+0100"
creator: "admin"
comments: ""
enabled: true
install-on:
- "6c488338-8eec-4103-ad21-cd461ac2c476"

 

Thank you,

Morris

0 Kudos
1 Reply
Maik
Advisor

Hey Morris,

The "show access-rulebase" command actually has a specific parameter that displays the hitcount per rule.

Just add "show-hits true" to your command and you should be able to see the expected results.

Regards,
Maik

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events