Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Dany6195
Explorer
Jump to solution

Will the "mgmt_cli" command to list rules work on the firewall/gateway directly

Dear Team,

We are trying to automate rule validation by pulling the rulesets, related address and service objects (&groups) out of the security gateways through mgmt_cli. Therefore, we ran the "mgmt_cli show Rulebase" to gateway it failed with below error; however, the same command ran successfully on the management device.

"message: "The Management API service is not available. Please check that the Management API server is up and running."
code: "generic_error"

 

So does that indicate, this mgmt_cli will only work in the management and not on the gateway firewall ?

 

 

 

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

mgmt_cli can be run on the gateways, but queries to the management API don’t work against a gateway since it does not run the Management API server.
You need to either run the command on the management server or specify the destination (using -m flag).

You can query what’s installed on the gateway using a procedure similar to: https://community.checkpoint.com/t5/General-Topics/Show-Ruleset-and-Objects-on-the-Gateway-Emergency...

View solution in original post

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

mgmt_cli can be run on the gateways, but queries to the management API don’t work against a gateway since it does not run the Management API server.
You need to either run the command on the management server or specify the destination (using -m flag).

You can query what’s installed on the gateway using a procedure similar to: https://community.checkpoint.com/t5/General-Topics/Show-Ruleset-and-Objects-on-the-Gateway-Emergency...

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events