Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ergotherego
Contributor II

Created on ‎12-08-2016 10:33 AM

CLI command to show all members in a nested address group?

Is there a CLI short-cut command that will show all members of a nested address group? Ie, trace the membership list all the way to the bottom, showing all of the children and sub-children?

12233
0 Kudos
2 REPLIES 2
emnoc
Esteemed Contributor III

Created on ‎12-08-2016 01:09 PM

You might beable todo;

 

 

 

diag sys checkused   firewall.addrgrp.name <groupname>

 

And then you have to do each member directly  via

 

show firewall address <addressname>

 

http://socpuppet.blogspot...-to-do-dependency.html

 

 

Just play around with it and see what you can come up with ;)

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
5488
0 Kudos
ergotherego
Contributor II
In response to emnoc

Created on ‎12-08-2016 01:13 PM

Thanks for the reply. Looks like that would help if you wanted to go bottom-up, but not the other way around.

 

I am going to take a look at using a TCL script from the FMG, might be the only way to do it inside of FortiWorld and not just parsing config files.

5487
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.