‭Daemons and CLI Commands‬

‭Daemons‬
‭ anagement plane: Authd, rasmgr, appweb3, keymgr, sysd, useridd.‬
M
‭Data plane: Pan_task, mprelay, which is for the key manager and VPN implementation.‬
‭Client PC: PanGPA and PanGPS‬

‭ low basic‬
F
‭Pan_task_1.log – Pan task daemons are responsible for packet forwarding‬

I‭PSec‬
‭IKEmgr.log‬
‭Keymgr.log — ISAKMP daemon, IPSec key repository‬
‭Tund.log‬

‭ lobalProtect‬
G
‭Appweb3-sslvpn.log‬
‭Pan_packet_diag.log — Flow basic, aggregate logs‬
‭Authd.log — authentication issues, User-ID‬
‭Rasmgr.log — SSL and VPN‬
‭Useridd.log — User-ID or HIP‬
‭PanGPA.log — Client PC — Agent‬
‭PanGPS.log — Services — GP‬

‭ outing‬
R
‭Routed.log‬

‭ erformance Management plane‬

‭ erformance Dataplane‬
P
‭Dp-monitor.log‬

‭ igh availability‬
H
‭Ha_agent.log‬
‭Sysd.log — Manages inter daemon communication‬
‭Pan_dha.log‬

‭ ommits‬
C
‭Pan_comm_0.log — Daemon for config change in data plane cache‬
‭CLI Commands‬
‭Commits‬
‭●‬ ‭Show job all — Show all the jobs, we can get the job ID from the commits.‬
‭●‬ ‭Show job id <Job ID #>‬

‭Session‬
‭●‬ ‭Session all — Shows all the active sessions‬
‭●‬ ‭Show Session ID <ID #> — Shows details about a closed session.‬
‭●‬ ‭Show session info — Shows counters of the active sessions.‬

‭Global Counters‬
‭●‬ ‭Show Counter Global — Have active filter configured, Global Counters‬
‭●‬ ‭Show Counter Global filter — Add filters‬
‭●‬ ‭Show counter global filter delta yes — Counters that were changed since the last‬
‭execution‬
‭●‬ ‭Show counter global filter delta yes packet-filter yes — Shows changes on the counters‬
‭depending on the filter configuration in real time.‬

‭Security Match‬
‭●‬ ‭Test security-policy-match from <Source Zone> to <Destination zone> source <Source‬
‭IP address> destination <Destination IP Address> application <App used> protocol‬
‭<Protocol #> — For testing the security Policies and to see if traffic is matching them.‬
‭●‬ ‭Test nat-policy-match from <Source Zone> to <Destination zone> source <Source IP‬
‭address> destination <Destination IP Address> protocol <Protocol #> — For testing the‬
‭NAT policy and to see if traffic is matching them‬

‭Zone Protection and URL cloud‬

‭Debug‬
‭●‬ ‭Debug software restart process <daemon name> — Restart a Daemon.‬
‭●‬ ‭Debug dataplane packet-diag set log on/off — Set logging on or off.‬
‭●‬ ‭Debug dataplane packet-diag show setting — Shows settings for logging.‬
‭●‬ ‭Debug dataplane packet-diag clear all — Clears all the logging configuration.‬
‭●‬ ‭Debug dataplane packet-diag set log feature ? — Set a feature on (For Example, Flow‬
‭basic).‬
‭●‬ ‭Debug software restart process device-server — Restart the communication between‬
‭management plane and data plane.‬
‭●‬ ‭Debug ike gateway <IPSec Gateway’s name> on debug — Set debugging log level for‬
‭IPSec on to check on daemon.‬
‭●‬ ‭Debug ike global on/off/show — Turns on/off or show the logging for the Ikemgr daemon.‬
 ‭●‬ D ‭ ebug software logging-level show level services all-services — Shows all the levels for‬
‭all the daemons‬
‭●‬ ‭Debug dataplane pool statistics — Shows information and the consumption of different‬
‭pools.‬

‭Mp-log‬
‭●‬ ‭Tail follow yes mp-log <Daemon.log> to follow a daemon in real time.‬
‭●‬ ‭Less mp-log <log file> — See all the log‬
‭●‬ ‭Grep mp-log <log file> — search in the log‬

‭Interfaces‬
‭●‬ ‭Show interface all — Shows all the interfaces.‬
‭●‬ ‭Show Interface <Interface #/#> — Shows information about an interface‬
‭●‬ ‭Show interface <Interface #/#> | match <Matching criteria> — Shows information about‬
‭an interface matching a criteria, could be an IP address or route.‬

‭ARP‬
‭●‬ S ‭ how arp all — Shows all the arp table‬
‭●‬ ‭Show arp all | match <matching criteria> — Shows information about the arp table‬
‭matching a criteria, could be a mac address or an IP address.‬

‭VPN‬
‭●‬ ‭ est vpn ike-sa — Start Phase 1 for VPN Tunnel‬
T
‭●‬ ‭Test vpn ipsec-sa — Start Phase 2 for VPN Tunnel‬
‭●‬ ‭Clear vpn ike-sa — Clears Phase 1 negotiation‬
‭●‬ ‭Clear vpn ipsec-sa — Clears Phase 2 negotiation‬
‭●‬ ‭Test vpn ike-sa/ipsec-sa gateway/tunnel <gateway or tunnel name> — Test tunnel‬
‭●‬ ‭Show vpn flow — Shows the tunnel status‬
‭●‬ ‭Show vpn flow tunnel-id <name of the tunnel> — Shows information about a specific‬
‭tunnel‬
‭‬
● ‭Show vpn ike-hashrul — Shows information about IKE and URL‬
‭●‬ ‭Show vpn ike-sa — Shows IKE configurations‬
‭●‬ ‭Show vpn IPSec-sa — Shows IPSec configurations‬
‭●‬ ‭Show vpn tunnel — Shows auto-ley tunnels‬

‭User ID‬
‭●‬ ‭Show user group list — Lists all the groups‬
‭●‬ ‭Show user group name — Shows all the members in the group‬
‭●‬ ‭Show user ip-user-mapping ip <IP Address> — Shows user info for an IP address.‬
‭●‬ ‭Show user ip-user-mapping all — Shows all the users and its groups including the way‬
‭they were mapped.‬

‭Performance‬
‭●‬ ‭Show running resource-monitor minute — Shows resources‬
 ‭‬
● ‭ how system info — Shows information about the system‬
S
‭●‬ ‭Show system resources follow — Shows resources consumption in real time‬
‭●‬ ‭Show system statistics application — Shows used applications in real time.‬
‭●‬ ‭Show system statistics sessions — Shows statistics for applications and the device‬

‭High Availability‬
‭●‬ ‭Show high-availability <> — Shows information about HA.‬

‭Offloading‬
‭●‬ ‭Set session offload yes/no — Enabled or disable offloading (Always reactivate)‬
‭●‬ ‭Show session info | match offloading — shows offloading values.‬
‭●‬ ‭Delete deviceconfig setting session offload — Enable Offloading and makes it persistent‬
‭●‬ ‭Set deviceconfig setting session offload — Commit from configure mode.‬